rpm package
suse/polkit&distro=SUSE Enterprise Storage 7
pkg:rpm/suse/polkit&distro=SUSE%20Enterprise%20Storage%207
Vulnerabilities (2)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2021-4115 | — | < 0.116-3.9.1 | 0.116-3.9.1 | Feb 21, 2022 | There is a flaw in polkit which can allow an unprivileged user to cause polkit to crash, due to process file descriptor exhaustion. The highest threat from this vulnerability is to availability. NOTE: Polkit process outage duration is tied to the failing process being reaped and | ||
| CVE-2021-4034 | — | KEV | < 0.116-3.6.1 | 0.116-3.6.1 | Jan 28, 2022 | A local privilege escalation vulnerability was found on polkit's pkexec utility. The pkexec application is a setuid tool designed to allow unprivileged users to run commands as privileged users according predefined policies. The current version of pkexec doesn't handle the callin |
- CVE-2021-4115Feb 21, 2022affected < 0.116-3.9.1fixed 0.116-3.9.1
There is a flaw in polkit which can allow an unprivileged user to cause polkit to crash, due to process file descriptor exhaustion. The highest threat from this vulnerability is to availability. NOTE: Polkit process outage duration is tied to the failing process being reaped and
- affected < 0.116-3.6.1fixed 0.116-3.6.1
A local privilege escalation vulnerability was found on polkit's pkexec utility. The pkexec application is a setuid tool designed to allow unprivileged users to run commands as privileged users according predefined policies. The current version of pkexec doesn't handle the callin