Security Updates Released for Sudo and Libgcrypt

Threat ID:: CC-3739
Category:
Threat Severity:: Information only
Threat Vector:
Published:: 4 February 2021 12:00 AM

Report a cyber attack: call 0300 303 5222 or email [email protected]

Affected platforms

The following platforms are known to be affected:

Sudo Versions: 1.9.0 - 1.9.5p1 / 1.8.2 - 1.8.31p1

Libgcrypt Version: 1.9.0 only

Threat details

Introduction

The developers of Sudo and Libgcrypt have released updates to address vulnerabilities. Sudo and Libgcrypt are utilities commonly included in many operating systems, particularly Unix and Linux-based. An attacker could exploit these vulnerabilities to take control of an affected system.

Remediation advice

Administrators and users of operating systems that include affected versions of Sudo and/or Libgcrypt are encouraged to apply relevant security updates from their operating system distributor.

For more information see:

Sudo CVE-2021-3156
Libgcrypt CVE-2021-3345

Last edited: 4 February 2021 12:21 pm