@yepuras m-a anuntat de aceasta vulnerabilitate.
Daca nu ati facut update de mult la server, ar trebui sa o faceti.
Fie general yum update -y sau doar la sudo prin comanda yum update sudo
Daca aveti update la zi, nu trebuie sa faceti nimic, totusi e bine sa rulati comanda de update pentru orice eventualitate .
Cod:
Dear customer,
We are writing to inform you of a critical vulnerability that was recently identified in linux Sudo command. This is caused by an old bug from July 2011, that could allow privilege escalation to root access (https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3156).
Following the release of the patched update of Sudo, actions have been taken on our side to update all the concerned OS images, that are now available on our Scaleway platform.
We strongly recommend you to update the Linux version running on your servers, to avoid any security related issue that can be caused by the previous versions of Sudo. Your sudo version must be 1.9.5p2 or higher.
You can use the following commands for the update. For Ubuntu / Debian :
sudo apt update; sudo apt -y install sudo
For Centos / Fedora :
dnf -y update sudo
If you have any questions regarding this issue please contact our support team.
Best regardsDaca nu ati facut update de mult la server, ar trebui sa o faceti.
Fie general yum update -y sau doar la sudo prin comanda yum update sudo
Daca aveti update la zi, nu trebuie sa faceti nimic, totusi e bine sa rulati comanda de update pentru orice eventualitate .
