PolicyKit: Multiple vulnerabilities
1.
Gentoo Linux Security Advisory
Version Information
| Advisory Reference |
GLSA 201204-06 / polkit |
| Release Date |
April 17, 2012 |
| Latest Revision |
April 17, 2012: 1 |
| Impact |
high |
| Exploitable |
local |
| Package |
Vulnerable versions |
Unaffected versions |
Architecture(s) |
| sys-auth/polkit |
<
0.104-r1 |
>=
0.104-r1 |
All supported architectures
|
Related bugreports:
#314535, #364973, #401513
Synopsis
Multiple vulnerabilities have been found in PolicyKit, the worst of
which may allow a local attacker to gain root privileges.
2.
Impact Information
Background
PolicyKit is a toolkit for controlling privileges for system-wide
services.
Description
Multiple vulnerabilities have been found in PolicyKit:
- Error messages in the pkexec utility disclose the existence of local
files (CVE-2010-0750).
- The pkexec utility initially checks the effective user ID of its
parent process for authorization, instead of checking the real user ID
(CVE-2011-1485).
- Members of the "wheel" group are able to execute commands as an
administrator without a password (CVE-2011-4945).
Impact
A local attacker could gain elevated privileges or sensitive
information.
3.
Resolution Information
Workaround
There is no known workaround at this time.
Resolution
All PolicyKit users should upgrade to the latest version:
Code Listing 3.1: Resolution |
# emerge --sync
# emerge --ask --oneshot --verbose ">=sys-auth/polkit-0.104-r1"
|
4.
References
|
