[sudo-commits] sudo changeset 12952:024d492fcc2b
Todd C. Miller
Todd.Miller at sudo.ws
Tue Feb 9 13:53:24 MST 2021
changeset: 12952:024d492fcc2b in /raid/repos/sudo
details: https://www.sudo.ws/repos/sudo/rev/024d492fcc2b
user: Todd C. Miller <Todd.Miller at sudo.ws>
date: Sat Jan 23 08:43:59 2021 -0700
Log Message:
Fix potential buffer overflow when unescaping backslashes in user_args.
Also, do not try to unescaping backslashes unless in run mode *and*
we are running the command via a shell.
Found by Qualys, this fixes CVE-2021-3156.
diffstat:
plugins/sudoers/sudoers.c | 23 ++++++++++++++++++-----
1 files changed, 18 insertions(+), 5 deletions(-)
More information about the sudo-commits
mailing list