Описание
ELSA-2020-1135: polkit security and bug fix update (LOW)
[0.112-26.0.1]
- Increase timeout to avoid defunct processes [Orabug: 26930744]
[0.112-26]
- Refined upstream fix of CVE-2018-1116 to avoid ABI changes
- Related: rhbz#1601411
[0.112-25]
- fix of CVE-2018-1116
- Resolves: rhbz#1601411
[0.112-24]
- pkttyagent: resetting terminal erases rest of input line
- Resolves: rhbz#1753037
[0.112-23]
- pkttyagent: process stopped by SIGTTOU if run in background job
- Resolves: rhbz#1724444
Обновленные пакеты
Oracle Linux 7
Oracle Linux aarch64
polkit
0.112-26.0.1.el7
polkit-devel
0.112-26.0.1.el7
polkit-docs
0.112-26.0.1.el7
Oracle Linux x86_64
polkit
0.112-26.0.1.el7
polkit-devel
0.112-26.0.1.el7
polkit-docs
0.112-26.0.1.el7
Связанные CVE
Связанные уязвимости
A flaw was found in polkit before version 0.116. The implementation of the polkit_backend_interactive_authority_check_authorization function in polkitd allows to test for authentication and trigger authentication of unrelated processes owned by other users. This may result in a local DoS and information disclosure.
A flaw was found in polkit before version 0.116. The implementation of the polkit_backend_interactive_authority_check_authorization function in polkitd allows to test for authentication and trigger authentication of unrelated processes owned by other users. This may result in a local DoS and information disclosure.
A flaw was found in polkit before version 0.116. The implementation of the polkit_backend_interactive_authority_check_authorization function in polkitd allows to test for authentication and trigger authentication of unrelated processes owned by other users. This may result in a local DoS and information disclosure.
A flaw was found in polkit before version 0.116. The implementation of ...
