A new updated sudo package with the fix for the CVE-2021-23240 within CentOS 6 ELS has been scheduled for gradual rollout from our production repository.
Rollout slot: 1
Rolled out to: 1%
ETA for 100% rollout: July 20
- Fix symbolic link attack in SELinux-enabled sudoedit (CVE-2021-23240)
yum update sudo*
IMMEDIATE UPDATE (VIA BYPASS)
yum update sudo* --enablerepo=ELS6-rollout-1-