High severity8.1NVD Advisory· Published Apr 6, 2017· Updated Jun 17, 2026
CVE-2017-7572
CVE-2017-7572
Description
The _checkPolkitPrivilege function in serviceHelper.py in Back In Time (aka backintime) 1.1.18 and earlier uses a deprecated polkit authorization method (unix-process) that is subject to a race condition (time of check, time of use). With this authorization method, the owner of a process requesting a polkit operation is checked by polkitd via /proc//status, by which time the requesting process may have been replaced by a different process with the same PID that has different privileges then the original requester.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
1Patches
Vulnerability mechanics
References
1- github.com/bit-team/backintime/commit/7f208dc547f569b689c888103e3b593a48cd1869nvdThird Party Advisory
News mentions
0No linked articles in our index yet.