Forum Discussion

Altostratus

Jan 27, 2021

CVE-2021-3156 | SUDO Heap-based Buffer Overflow

Are any of the BIG-IP versions affected by the recent SUDO vulnerability announcement? I have checked our F5 estate and I don't believe that the SUDO package is installed or used, but I just want to ...

BIG-IP

security

Damian_Foitzik-

Employee

Jan 30, 2021

BIG-IP found not to be vulnerable to CVE-2021-3156.

Article: K86488846 - Sudo vulnerability CVE-2021-3156 (f5.com)

Help guide the future of your DevCentral Community!

What tools do you use to collaborate? (1min - anonymous)

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

GitHub Awesome-F5

Forum Discussion

CVE-2021-3156 | SUDO Heap-based Buffer Overflow

F5 Academy at AppWorld 2026

Introducing the F5 AI Assistant for BIG-IP

Recent Discussions

Connection Rest f5

Kubernetes cert-manager + LetsEncrypt + F5

The GSLB pool is providing an incorrect IP to end users

Unable to ping from some self ip on Velos

Not seeing the latest F5OS-A when running Journeys

Related Content

IIS 6.0 WebDAV Buffer Overflow

Big-IQ DCD statistics overflow detection

Disable buffer overflow in json parameters

Attack signature Generic buffer overflow attempt 27 when uplod video

clock clicks -milliseconds overflow time?

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS