Уязвимость CVE-2014-5033

Пакет	Статус	Версия исправления	Релиз	Тип
kde4libs	fixed	4:4.13.3-2		package

CVE-2014-5033

ubuntu

около 11 лет назад

KDE kdelibs before 4.14 and kauth before 5.1 does not properly use D-Bus for communication with a polkit authority, which allows local users to bypass intended access restrictions by leveraging a PolkitUnixProcess PolkitSubject race condition via a (1) setuid process or (2) pkexec process, related to CVE-2013-4288 and "PID reuse race conditions."

CVE-2014-5033

redhat

больше 11 лет назад

KDE kdelibs before 4.14 and kauth before 5.1 does not properly use D-Bus for communication with a polkit authority, which allows local users to bypass intended access restrictions by leveraging a PolkitUnixProcess PolkitSubject race condition via a (1) setuid process or (2) pkexec process, related to CVE-2013-4288 and "PID reuse race conditions."

CVE-2014-5033

nvd

около 11 лет назад

KDE kdelibs before 4.14 and kauth before 5.1 does not properly use D-Bus for communication with a polkit authority, which allows local users to bypass intended access restrictions by leveraging a PolkitUnixProcess PolkitSubject race condition via a (1) setuid process or (2) pkexec process, related to CVE-2013-4288 and "PID reuse race conditions."

GHSA-gh63-q3pg-7q7r

github

больше 3 лет назад

KDE kdelibs before 4.14 and kauth before 5.1 does not properly use D-Bus for communication with a polkit authority, which allows local users to bypass intended access restrictions by leveraging a PolkitUnixProcess PolkitSubject race condition via a (1) setuid process or (2) pkexec process, related to CVE-2013-4288 and "PID reuse race conditions."

ELSA-2014-1359

oracle-oval

почти 11 лет назад

ELSA-2014-1359: polkit-qt security update (IMPORTANT)

exploitDog

CVE-2014-5033

Описание

Пакеты

Примечания

Связанные уязвимости