用户首先使用 非 root 账户
登录系统,然后执行:
sudoedit -s / sudoedit: /: not a regular file
如果提示上述 sudoedit: /: not a regular file,则存在此漏洞,如果如下以 usage
开头则漏洞修复。
$ sudoedit -s / usage: sudoedit -h | -V usage: sudoedit [-ABknS] [-r role] [-t type] [-C num] [-D directory] ..
wget https://github.com/sudo-project/sudo/releases/download/SUDO_1_9_13p2/sudo-1.9.13-3.el7.x86_64.rpm rpm -Uvh sudo-1.9.13-3.el7.x86_64.rpm Preparing... ################################# [100%] Updating / installing... 1:sudo-1.9.13-3.el7 ################################# [ 50%] Cleaning up / removing... 2:sudo-1.8.23-9.el7 ################################# [100%]
sudo -V ... Sudoers I/O plugin version 1.9.13p2 Sudoers audit plugin version 1.9.13p2