Hi Marcus,
The sudo update was released today for 15.1.
just for clarification: If I just updated my system, I should have this patch running? This would be: sudo-1.8.22-lp151.5.12.1.x86_64 (dated January 27). The Qualys blog post on this issue ... https://blog.qualys.com/vulnerabilities-research/2021/01/26/cve-2021-3156-he... ... states:
How can I test if I have vulnerable version?
To test if a system is vulnerable or not, login to the system as a non-root user.
Run command “sudoedit -s /”
If the system is vulnerable, it will respond with an error that starts with “sudoedit:”
If the system is patched, it will respond with an error that starts with “usage:”
Right now, I get this:
me@computer:~> sudoedit -s / sudoedit: invalid mode flags from sudo front end: 0x20002 sudoedit: Regelwerks-Plugin konnte nicht initialisiert werden
Is their "test" "broken" or is this kind of test not applicable to Leap? Best regards, Sebastian