CVE-2021-3156: Baron Samedit (sudo Heap Overflow)

HIGH
7.8HIGH
Published: 2021-01-26Affected: sudo 1.8.2 through 1.9.5p1CWE-122

What is Baron Samedit?

A heap-based buffer overflow in sudo that allows any unprivileged user to gain root privileges on default Linux installations. The vulnerability has been present in sudo since July 2011 — a 10-year-old bug in one of Linux's most critical utilities.

Impact & Exploitation

Affects nearly every Linux distribution. Enables local privilege escalation to root without password. Present for 10 years in sudo — installed on virtually every Unix-like system.

How Precogs AI Detects Baron Samedit (sudo Heap Overflow)

Precogs AI Binary SAST identifies sudo versions in compiled Linux distributions and container images, detecting Baron Samedit and similar heap overflow conditions in SUID binaries.

Scan for CVE-2021-3156

Related Resources

🔍 Related CWE Entries

📖 Security Guides

🔗 External References

Precogs Logo

Precogs Research

This vulnerability intelligence report was analyzed and enriched by the Precogs AI Security Team. Our researchers continuously monitor emerging threats across AI code, LLM pipelines, and binary architectures to ensure accurate real-time remediation guidance.

Base Score

CVSS7.8
SeverityHIGH
CWECWE-122
Published2021-01-26

Tags

linuxsudoprivilege-escalationheap-overflow

Quick Links

Is your system affected?

Precogs AI detects Baron Samedit (sudo Heap Overflow) in compiled binaries and firmware — even without source code.

Request Deep Analysis