VMware Support Community
gplima89
Contributor
Contributor
‎03-02-2021 12:53 PM

Skyline sudo vulnerability - CVE-2021-3156

Recently I've doing some security reviews in my environment and I saw that skyline servers are using sudo 1.8.30, even after the last update on Feb 9th, Skyline still using a vulnerable sudo version.

Current version: Sudoers I/O plugin version 1.8.30

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3156

I did some tests trying to manually upgrade sudo using the following KB, but it is reporting libc.so.6(GLIBC_2.27) (64bits), and forcing the upgrade with --nodeps, but it crashed sudo.

https://kb.vmware.com/s/article/82554

After rollback the package installation, it is working fine, but I would like to know if someone has a solution to proceed upgrading sudo for the Skyline servers.

0 Kudos
2 Replies
ashwin_prakash
VMware Employee
VMware Employee
‎03-10-2021 08:22 AM

Hello @gplima89,

Welcome to Skyline Communities!

We're currently investigating this issue to understand if this Vulnerability is affecting the Skyline Collector.

In the meantime, we would request you to share the Collector and Account details using the below Smartsheet Form.

CustomerVMware Skyline Community - Smartsheet.com


Sincerely,
Ashwin Prakash
Skyline Support Moderator
0 Kudos
evfernandez
VMware Employee
VMware Employee
‎03-11-2021 07:00 AM

Hi @gplima89,

I see that you've raised a Service Request for this issue. We'll continue this on the SR and I'll close the loop on this thread once the issue is resolved. 

Thank you!

Eddie Fernandez
Manager, Skyline Support