GLSA
Advocate
Joined: 12 May 2004
Posts: 2663
|
 Posted: Fri Aug 16, 2019 12:26 am Post subject: [ GLSA 201908-14 ] polkit |
 |
|
Gentoo Linux Security Advisory
Title: polkit: Multiple vulnerabilities (GLSA 201908-14)
Severity: normal
Exploitable: remote
Date: 2019-08-15
Bug(s): #661470, #672578
ID: 201908-14
Synopsis
Multiple vulnerabilities have been found in polkit, the worst of
which could result in privilege escalation.
Background
polkit is a toolkit for managing policies relating to unprivileged
processes communicating with privileged processes.
Affected Packages
Package: sys-auth/polkit
Vulnerable: < 0.115-r2
Unaffected: >= 0.115-r2
Architectures: All supported architectures
Description
Multiple vulnerabilities have been discovered in polkit. Please review
the CVE identifiers referenced below for details.
Impact
Please review the referenced CVE identifiers for details.
Workaround
There is no known workaround at this time.
Resolution
All polkit users should upgrade to the latest version: | Code: | # emerge --sync
# emerge --ask --oneshot --verbose ">=sys-auth/polkit-0.115-r2"
|
References
CVE-2018-1116
CVE-2018-19788 |
|
News & Announcements
