Sudo Heap-Based Buffer Overflow Vulnerability — CVE-2021-3156
Will the Sudo vulnerability be patched in the version of FreeBSD used by Pfsense 2.4.5p1 or hopefully the upcoming version 2.5?
sudo is not installed by default. But, yes, it will be the patched version in 2.5:
[2.5.0-DEVELOPMENT][firstname.lastname@example.org]/root: pkg search sudo pfSense-pkg-sudo-0.3_6 pfSense package sudo sudo-1.9.5p2 Allow others to run commands as root