[oi-dev] CVE-2021-3156 seems relevant for OI

Till Wegmueller toasterson at gmail.com
Thu Jan 28 11:18:48 UTC 2021


People still don't inform us or the BSD's / Apple properly for these 
sorts of things, but we can scramble to address small patches like this 
very fast it turns out. Thankfully now a couple of people in the BSD's 
now ping us in tweets when this happens so we get the news very fast, 
although still post embargo and not pre.


On 28.01.21 04:36, Tony Brian Albers wrote:
> On 01/28/21 07:14 AM, Tim Mooney via oi-dev wrote:
>> In regard to: [oi-dev] CVE-2021-3156 seems relevant for OI, Tony Brian...:
>>> We might want to get sudo patched really, really quickly.
>> Rich Lowe had a PR for it last night, just a few hours after the
>> embargo lifted:
>>       https://github.com/OpenIndiana/oi-userland/pull/6456
>> Tim
> Cool, that's what I call fast :)
> /tony

More information about the oi-dev mailing list