I was initially confused if this was just WSL as "WSL and Linux" could be interp... | Hacker News

Hacker Timesnew | past | comments | ask | show | jobs | submit

		tyingq on Jan 29, 2021 \| parent \| context \| favorite \| on: Sudo buffer overflow explained, and how to patch (... I was initially confused if this was just WSL as "WSL and Linux" could be interpreted that way. It's not just WSL. It would appear to be sudo, wherever it runs. I didn't see anything Linux specific about the CVE, other than maybe there are platforms that are better about heap-based buffer overflows.

mcrump on Jan 29, 2021 [–]

It is sudo. It affects Linux, WSL, etc.

tyingq on Jan 29, 2021 | [–]

Sudo also runs, for example, on OpenBSD. Solaris, MacOS, etc.

rcoveson on Jan 29, 2021 | | [–]

I think OpenBSD stopped shipping `sudo` in the base system in favor of `doas`.

Consider applying for YC's Summer 2026 batch! Applications are open till May 4
Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact