CVE-2021-3156: Heap-Based Buffer Overflow in Sudo | Explained, Shown and How to patch (WSL + Linux)
NOTE: I was incorrect regarding WSL - update it the same way we did Linux.
Write-up notes can be found here - https://github.com/mbcrump/CVE-2021-3...
00:00 - Introduction
01:29 - What's a CVE?
02:22 - What's the bug?
05:30 - Exploit shown in action
13:07 - Sudo versions affected
13:48 - WSL Windows Subsystem for Linux
15:11 - Detecting if you are vulnerable through sudo (WSL)
19:21 - Detecting if you are vulnerable through sudo (Ubuntu)
20:53 - Detecting if you are vulnerable through commands
24:58 - What to do if you are running K8s or containers
27:54 - Examine Sudo versions
28:30 - Patching WSL
30:17 - Patching Ubuntu
32:09 - Where can I get exploit.c?
33:59 - Patching Ubuntu (part 2)
38:10 - Patching WSL (part 2)
46:35 - GitHub search results
47:28 - Patching WSL (part 3)
✭ TWITCH: / mbcrump
✭ DISCORD: / discord
✭ TWITTER: / mbcrump
✭ GITHUB: http://github.com/mbcrump
✭ INSTAGRAM: / mbcrump
✭ DEV.TO: https://dev.to/mbcrump
✭ YOUTUBE: / mbcrump
If you want to work with us (via sponsorship/partner) then contact [email protected].