Don’t have Puppet Remediate? Here’s how to do it manually or with Bolt
We want to help the community even if you don’t have Puppet Remediate, so here’s the commands to fix this sudo vulnerability manually, or using use our open source tool
Run this command against your Linux boxes:
sudo -V | grep "^Sudo version"
List all the boxes that have versions below 1.8.28 (or corresponding fix version for your OS). Then upgrade the potentially vulnerable ones by running either apt-get or yum
apt-get upgrade sudo
You will need to run this against each vulnerable box, or write a script to perform all the updates.
We are always happy to chat security in the
Puppet Community Slack.
Want to try Puppet Remediate out?
Puppet is encouraging everyone to join the community around Puppet Remediate. You can find out more about Puppet Remediate
Jonathan Stewart is a principal product manager at Puppet.