rpm package
suse/polkit&distro=SUSE OpenStack Cloud Crowbar 9
pkg:rpm/suse/polkit&distro=SUSE%20OpenStack%20Cloud%20Crowbar%209
Vulnerabilities (2)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2021-3560 | — | KEV | < 0.113-5.21.1 | 0.113-5.21.1 | Feb 16, 2022 | It was found that polkit could be tricked into bypassing the credential checks for D-Bus requests, elevating the privileges of the requestor to the root user. This flaw could be used by an unprivileged local attacker to, for example, create a new local administrator. The highest | |
| CVE-2021-4034 | — | KEV | < 0.113-5.24.1 | 0.113-5.24.1 | Jan 28, 2022 | A local privilege escalation vulnerability was found on polkit's pkexec utility. The pkexec application is a setuid tool designed to allow unprivileged users to run commands as privileged users according predefined policies. The current version of pkexec doesn't handle the callin |
- affected < 0.113-5.21.1fixed 0.113-5.21.1
It was found that polkit could be tricked into bypassing the credential checks for D-Bus requests, elevating the privileges of the requestor to the root user. This flaw could be used by an unprivileged local attacker to, for example, create a new local administrator. The highest
- affected < 0.113-5.24.1fixed 0.113-5.24.1
A local privilege escalation vulnerability was found on polkit's pkexec utility. The pkexec application is a setuid tool designed to allow unprivileged users to run commands as privileged users according predefined policies. The current version of pkexec doesn't handle the callin