Barry Brimer: > > I just installed this on a previously fully updated CentOS Linux 6 (x86_64) VM. > The package installed fine, the sudo functionality still works but according to > the test described in the qualys advisory of running "sudoedit -s /” > (without quotes) this system is still vulnerable. I guess that is a question to ask those that support OL6 ? I noticed the same - but I don't know if running 'sudoedit -s /' is an absolute measure of the vulnerability being fixed? There is definitely a 'CVE-2021-3156' patch that is applied in the SRPM ... I don't know of another way of testing if this build fixes the issue ? James Pearson _______________________________________________ CentOS mailing list CentOS@xxxxxxxxxx https://lists.centos.org/mailman/listinfo/centos
Re: CentOS 6 fix sudo CVE-2021-3156
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
- Subject: Re: CentOS 6 fix sudo CVE-2021-3156
- From: James Pearson <james-p@xxxxxxxxxxxxxxxxxx>
- Date: Thu, 28 Jan 2021 18:17:42 +0000
- In-reply-to: <71A32E5F-95FA-4AC6-813C-91E8520D154F@brimer.org>
- References: <bc051b1c7028b74b553e0c6a57af83ae@assyoma.it>, <CAPg4iBDBxcji4Fj2YH1RiZziwqKO0D8GFWwtzkSjNtrKywz8Ew@mail.gmail.com> <MN2PR02MB6351AE7938E0336C94B3A3EACDBA9@MN2PR02MB6351.namprd02.prod.outlook.com>, <71A32E5F-95FA-4AC6-813C-91E8520D154F@brimer.org>
- Follow-Ups:
- Re: CentOS 6 fix sudo CVE-2021-3156
- From: Gionatan Danti
- Re: CentOS 6 fix sudo CVE-2021-3156
- References:
- CentOS 6 fix sudo CVE-2021-3156
- From: Gionatan Danti
- Re: CentOS 6 fix sudo CVE-2021-3156
- From: Maxim Shpakov
- Re: CentOS 6 fix sudo CVE-2021-3156
- From: James Pearson
- Re: CentOS 6 fix sudo CVE-2021-3156
- From: Barry Brimer
- CentOS 6 fix sudo CVE-2021-3156
- Prev by Date: Re: CentOS 6 fix sudo CVE-2021-3156
- Next by Date: Re: CentOS 6 fix sudo CVE-2021-3156
- Previous by thread: Re: CentOS 6 fix sudo CVE-2021-3156
- Next by thread: Re: CentOS 6 fix sudo CVE-2021-3156
- Index(es):
 |