rpm package
almalinux/polkit-libs
pkg:rpm/almalinux/polkit-libs
Vulnerabilities (2)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2021-4115 | — | < 0.115-13.el8_5.2 | 0.115-13.el8_5.2 | Feb 21, 2022 | There is a flaw in polkit which can allow an unprivileged user to cause polkit to crash, due to process file descriptor exhaustion. The highest threat from this vulnerability is to availability. NOTE: Polkit process outage duration is tied to the failing process being reaped and | ||
| CVE-2021-4034 | — | KEV | < 0.115-13.el8_5.2 | 0.115-13.el8_5.2 | Jan 28, 2022 | A local privilege escalation vulnerability was found on polkit's pkexec utility. The pkexec application is a setuid tool designed to allow unprivileged users to run commands as privileged users according predefined policies. The current version of pkexec doesn't handle the callin |
- CVE-2021-4115Feb 21, 2022affected < 0.115-13.el8_5.2fixed 0.115-13.el8_5.2
There is a flaw in polkit which can allow an unprivileged user to cause polkit to crash, due to process file descriptor exhaustion. The highest threat from this vulnerability is to availability. NOTE: Polkit process outage duration is tied to the failing process being reaped and
- affected < 0.115-13.el8_5.2fixed 0.115-13.el8_5.2
A local privilege escalation vulnerability was found on polkit's pkexec utility. The pkexec application is a setuid tool designed to allow unprivileged users to run commands as privileged users according predefined policies. The current version of pkexec doesn't handle the callin