Описание
Security update for polkit
This update for polkit fixes the following issues:
Security issue fixed:
- CVE-2018-19788: Fixed handling of UIDs over MAX_UINT (bsc#1118277)
Список пакетов
SUSE Linux Enterprise Module for Basesystem 15
libpolkit0-0.114-3.6.1
polkit-0.114-3.6.1
polkit-devel-0.114-3.6.1
typelib-1_0-Polkit-1_0-0.114-3.6.1
Ссылки
- Link for SUSE-SU-2019:0015-1
- E-Mail link for SUSE-SU-2019:0015-1
- SUSE Security Ratings
- SUSE Bug 1118277
- SUSE CVE CVE-2018-19788 page
Описание
A flaw was found in PolicyKit (aka polkit) 0.115 that allows a user with a uid greater than INT_MAX to successfully execute any systemctl command.
Затронутые продукты
SUSE Linux Enterprise Module for Basesystem 15:libpolkit0-0.114-3.6.1
SUSE Linux Enterprise Module for Basesystem 15:polkit-0.114-3.6.1
SUSE Linux Enterprise Module for Basesystem 15:polkit-devel-0.114-3.6.1
SUSE Linux Enterprise Module for Basesystem 15:typelib-1_0-Polkit-1_0-0.114-3.6.1
Ссылки
- CVE-2018-19788
- SUSE Bug 1118274
- SUSE Bug 1118277
- SUSE Bug 1119056
- SUSE Bug 1126909