Thank you for using AMIMOTO Managed Hosting.
This announcement is brought to you as we got an information from AWS regarding a security issue with the sudo command.
AMIMOTO Managed Hosting will be performing maintenance based on recommendations from AWS.
There is no requirement for our customers related to this maintenance.
Target: All EC2 instances on AMIMOTO Managed Hosting
Impact on customer sites: As the server will be rebooted, the old and current plans (Personal Micro, Personal Small) that do not support auto-scaling will experience momentary interruptions.
Period: Thursday, January 28 – Friday, January 29, 10:00 – 18:00 (UTC)
The work will be done automatically on the backend.
There will be no individual announcements to customers before or after the work.
Announcement from AWS
Initial publication date: 01/26/2021 2:11 PM PST
CVE Identifier: CVE-2021-3156
AWS is aware of a security issue recently disclosed by the open source community that affects the Linux “sudo” utility (CVE-2021-3156). This issue may allow unprivileged users to execute privileged commands. the sudo maintainer has published more information about this issue at https://www.sudo.ws/alerts/unescape_overflow.html.
AWS infrastructure and services are not affected by this issue. As a general security best practice, AmazonEC2 customers running AmazonLinux are advised to update their operating system and install the latest version of sudo.
If you have any questions or concerns regarding this matter, please feel free to contact our support team.