Management Console virtual appliance contains vulnerable version of sudo.

Advisory Information

  • Advisory ID: TERA-SA-000078
  • CVE Numbers and Scores:
  • Published: 11 May 2021
  • Last Updated: 11 May 2021
  • Download PDF

Summary

Sudo before 1.9.5p2 has a Heap-based Buffer Overflow, allowing privilege escalation to root via "sudoedit -s" and a command-line argument that ends with a single backslash character. This can be exploited by a non-privileged user who does not appear in the sudoers file.

Management Console OVA and AMI virtual appliances prior to version 21.03 contain a version of sudo that is vulnerable to this CVE.


Affected Products

  • Management Console AMI and OVA appliances prior to 21.03

Solutions and Mitigations

Available Updates

Latest version - Management Console

Mitigations

  1. Log into a shell on an existing MC appliance (ie. via SSH)
  2. Update sudo by typing the following command in the shell you've opened:sudo yum update sudo -y
  3. It will prompt you for your password, enter it.
  4. When the update is complete, you will be returned to a prompt. You may verify your sudo version with the following command: rpm -q sudo.
  5. Ensure the version reported is above or equal to 1.9.5p2.

Vulnerability Details

CVE-2021-3156

Sudo before 1.9.5p2 has a Heap-based Buffer Overflow, allowing privilege escalation to root via "sudoedit -s" and a command-line argument that ends with a single backslash character.

Remark

Vulnerability classification has been performed using the CVSSv3 scoring system. The CVSS environmental score is specific to each customer’s environment and should be defined by the customer to attain a final scoring.


Additional Resources


Revision History

11 May 2021: Initial Publication


Legal Disclaimer

THIS DOCUMENT IS PROVIDED ON AN "AS IS" BASIS AND DOES NOT IMPLY ANY KIND OF GUARANTEE OR WARRANTY, INCLUDING THE WARRANTIES OF MERCHANTABILITY OR FITNESS FOR A PARTICULAR USE. YOUR USE OF THE INFORMATION ON THE DOCUMENT OR MATERIALS LINKED FROM THE DOCUMENT IS AT YOUR OWN RISK. TERADICI RESERVES THE RIGHT TO CHANGE OR UPDATE THIS DOCUMENT AT ANY TIME.