Issue
What were you trying to do that didn't work?
Customers are used to prevent shell execution from vi through using the following sudo stanzas, e.g.:
Cmnd_Alias VIM = /usr/bin/vim,/bin/vi,/usr/libexec/vi,/usr/bin/vi
admin ALL = NOPASSWD:NOEXEC:VIM
Until RHEL9 this was working fine, but now it fails because /usr/bin/vi is now a shell script which internally selects the best binary.
This leads to getting the following error and vi not spawning at all:
[admin@vm-rhel9 ~]$ sudo vi
/usr/bin/vi: line 19: /usr/bin/vim: Permission denied
/usr/bin/vi: line 19: /usr/bin/vim: Success
Please provide the package NVR for which bug is seen:
vim-minimal-8.2.2637-20.el9_1
How reproducible:
Always, see above
