[Important] [Security] Fix for a vulnerability in sudo, CVE-2021-3156, for Virtuozzo Hybrid Infrastructure 4.0 Update 1.2 (4.0.1-49)

Issue date: 2020-02-03

Applies to: Virtuozzo Hybrid Infrastructure 4.0

Virtuozzo Advisory ID: VZA-2021-005

1. Overview

This update provides a security fix.

2. Bug Fixes

  • Fix for a vulnerability in sudo known as CVE-2021-3156. (VSTOR-40614)

3. Installing the Update

You can install the update in the SETTINGS > UPDATE section of the admin panel. A reboot is not required.

The JSON file with the list of new and updated packages is available at https://docs.virtuozzo.com/vza/VZA-2021-005.json.