A bug that could allow any local user on most Linux or Unix systems to gain root access has been uncovered. The bug was found in Sudo, a utility built into most Unix and Linux operating systems. Qualys researchers named the vulnerability Baron Samedit, tracked as CVE-2021-3156. The authors of Sudo have released a patched update, Sudo version of 1.9.5p2. The vulnerability is a local attack that requires low complexity and affects integrity and confidentiality.
Source: https://threatpost.com/sudo-bug-root-access-linux-2/163395/