vulnerability
Oracle Linux: CVE-2018-1116: ELSA-2020-1135: polkit security and bug fix update (LOW) (Multiple Advisories)
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 3 | (AV:L/AC:L/Au:S/C:P/I:N/A:P) | Jul 10, 2018 | Oct 5, 2022 | Nov 29, 2024 |
Severity
3
CVSS
(AV:L/AC:L/Au:S/C:P/I:N/A:P)
Published
Jul 10, 2018
Added
Oct 5, 2022
Modified
Nov 29, 2024
Description
A flaw was found in polkit before version 0.116. The implementation of the polkit_backend_interactive_authority_check_authorization function in polkitd allows to test for authentication and trigger authentication of unrelated processes owned by other users. This may result in a local DoS and information disclosure.
It was found that Polkit's CheckAuthorization and RegisterAuthenticationAgent D-Bus calls did not validate the client provided UID. A specially crafted program could use this flaw to submit arbitrary UIDs, triggering various denial of service or minor disclosures, such as which authentication is cached in the victim's session.
It was found that Polkit's CheckAuthorization and RegisterAuthenticationAgent D-Bus calls did not validate the client provided UID. A specially crafted program could use this flaw to submit arbitrary UIDs, triggering various denial of service or minor disclosures, such as which authentication is cached in the victim's session.
Solutions
oracle-linux-upgrade-polkitoracle-linux-upgrade-polkit-develoracle-linux-upgrade-polkit-docs
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.