The sudo and su utilities mediate a critical privilege boundary on just about every open source operating system that powers the Internet. Unfortunately, these utilities have a long history of memory safety issues.
By rewriting sudo and su in Rust we can make sure they don't suffer from any more memory safety vulnerabilities. We're going to get it done.
What We've Done
In December of 2022 we funded a joint development effort between Tweede Golf and Ferrous Systems to rewrite sudo and su in Rust.
Work started in December of 2022 and is planned to conclude in September of 2023. You can follow development by watching the GitHub repository.
From our Blog
April 26, 2023
Bringing Memory Safety to sudo and su
We are reimplementing sudo and su utilities in Rust.