“Wheel” was part of the team that discovered the heap overflow vulnerability in SUDO, Baron Samedit (CVE-2021-3156), that impacted major Unix-like operating systems included Linux, macOS, AIX and Solaris. He’ll provide an overview of the vulnerability and then dive into a technical discussion of the research. Visit https://www.securityweekly.com/psw for all the latest episodes!

Full Episode Show Notes

Unearthing a 10-Year Old SUDO Vulnerability

https://blog.qualys.com/vulnerabilities-research/2021/01/26/cve-2021-3156-heap-based-buffer-overflow-in-sudo-baron-samedit

Guests

. Wheel – Researcher at Qualys

Hosts

Lee Neely – Senior Cyber Analyst at Lawrence Livermore National Laboratory

Paul Asadoorian – Founder at Security Weekly

Tyler Robinson – Managing Director of Network Operations at Nisos, Inc

Announcements

• If you missed any of our previously recorded webcasts or technical trainings, they are available for your viewing pleasure at https://securityweekly.com/ondemand

Audio