Alerts This Week
Warning Icon 1 659
Alerts This Week
Warning Icon 1 659

Ubuntu 14.04 ESM: USN-4705-2 Critical: Sudo Memory Access Risk

Calendar Jan 27, 2021 User Avatar LinuxSecurity Advisories
1 min read
Ubuntu Large Esm H500
Topics%20covered

Topics Covered

security advisory critical access control security fix Ubuntu sudo memory access ubuntu 14.04 local access risk
Several security issues were fixed in Sudo. 
=========================================================================Ubuntu Security Notice USN-4705-2
January 27, 2021

sudo vulnerability
=========================================================================
A security issue affects these releases of Ubuntu and its derivatives:

- Ubuntu 14.04 ESM
- Ubuntu 12.04 ESM

Summary:

Several security issues were fixed in Sudo.

Software Description:
- sudo: Provide limited super user privileges to specific users
Details:

USN-4705-1 fixed a vulnerability in Sudo. This update provides
the corresponding update for Ubuntu 12.04 ESM and Ubuntu 14.04 ESM.

Original advisory details:

 It was discovered that Sudo incorrectly handled memory when parsing command
 lines. A local attacker could possibly use this issue to obtain unintended
 access to the administrator account. (CVE-2021-3156)

Update instructions:

The problem can be corrected by updating your system to the following
package versions:

Ubuntu 14.04 ESM:
  sudo                            1.8.9p5-1ubuntu1.5+esm6

Ubuntu 12.04 ESM:
  sudo                            1.8.3p1-1ubuntu3.10

In general, a standard system update will make all the necessary changes.

References:
  
  https://ubuntu.com/security/notices/USN-4705-1
  CVE-2021-3156

Ubuntu 14.04 ESM: USN-4705-2 Critical: Sudo Memory Access Risk

ubuntu
Calendar Grey January 27, 2021
Dist Ubuntu Esm H88
Ubuntu Security Notice USN-4705-2 January 27, 2021 sudo vulnerability A security issue affects these
Several security issues were fixed in Sudo.

Summary

Topics%20covered

Topics Covered

security advisory critical access control security fix Ubuntu sudo memory access ubuntu 14.04 local access risk

Update Instructions

The problem can be corrected by updating your system to the following package versions: Ubuntu 14.04 ESM: sudo 1.8.9p5-1ubuntu1.5+esm6 Ubuntu 12.04 ESM: sudo 1.8.3p1-1ubuntu3.10 In general, a standard system update will make all the necessary changes.

References

https://ubuntu.com/security/notices/USN-4705-1

CVE-2021-3156

Severity
critical
Lowest
Low
Medium
High
Critical

January 27, 2021

Topics%20covered

Topics Covered

security advisory critical access control security fix Ubuntu sudo memory access ubuntu 14.04 local access risk

Package Information

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Related News

Your message here