Описание
Race condition in PolicyKit (aka polkit) allows local users to bypass intended PolicyKit restrictions and gain privileges by starting a setuid or pkexec process before the authorization check is performed, related to (1) the polkit_unix_process_new API function, (2) the dbus API, or (3) the --process (unix-process) option for authorization to pkcheck.
| Релиз | Статус | Примечание |
|---|---|---|
| devel | released | 0.105-3ubuntu3 |
| lucid | released | 0.96-2ubuntu0.2 |
| precise | released | 0.104-1ubuntu1.1 |
| quantal | released | 0.104-2ubuntu1.1 |
| raring | released | 0.105-1ubuntu1.1 |
| upstream | needs-triage |
Показывать по
EPSS
7.2 High
CVSS2
Связанные уязвимости
Race condition in PolicyKit (aka polkit) allows local users to bypass intended PolicyKit restrictions and gain privileges by starting a setuid or pkexec process before the authorization check is performed, related to (1) the polkit_unix_process_new API function, (2) the dbus API, or (3) the --process (unix-process) option for authorization to pkcheck.
Race condition in PolicyKit (aka polkit) allows local users to bypass intended PolicyKit restrictions and gain privileges by starting a setuid or pkexec process before the authorization check is performed, related to (1) the polkit_unix_process_new API function, (2) the dbus API, or (3) the --process (unix-process) option for authorization to pkcheck.
Race condition in PolicyKit (aka polkit) allows local users to bypass ...
Race condition in PolicyKit (aka polkit) allows local users to bypass intended PolicyKit restrictions and gain privileges by starting a setuid or pkexec process before the authorization check is performed, related to (1) the polkit_unix_process_new API function, (2) the dbus API, or (3) the --process (unix-process) option for authorization to pkcheck.
EPSS
7.2 High
CVSS2