Tag
sudo
Safeguard articles tagged "sudo" — guides, analysis, and best practices for software supply chain and application security.
2 articles
Vulnerability Analysis
Baron Samedit (CVE-2021-3156) Explained: The Sudo Root Overflow
CVE-2021-3156, Baron Samedit, is a heap overflow in sudo that gives any local user root and hid in plain sight for nearly a decade. Here is the root cause, a one-line test, and the patched version.
Jul 4, 20266 min read
Vulnerability Analysis
sudo -e/sudoedit privilege escalation bypass (CVE-2019-14287)
CVE-2019-14287 let sudo users bypass "run as any user except root" rules via `sudo -u#-1`, gaining full root. Here's how it worked and how to fix it.
Jan 7, 20268 min read