Ubuntu Security Notice 3934-2 - USN-3934-1 fixed a vulnerability in Policykit. This update provides the corresponding update for Ubuntu 12.04 ESM. It was discovered that PolicyKit incorrectly relied on the fork system call in the Linux kernel being atomic. A local attacker could possibly use this issue to gain access to services that have cached authorizations. Various other issues were also addressed.
13db2b49515621a4f2d04fc157919dafa07b9c4e91f83f5c1eb644a170dc9033==========================================================================
Ubuntu Security Notice USN-3934-2
September 02, 2019
policykit-1 vulnerability
==========================================================================
A security issue affects these releases of Ubuntu and its derivatives:
- Ubuntu 12.04 ESM
Summary:
PolicyKit could allow unintended access.
Software Description:
- policykit-1: framework for managing administrative policies and privileges
Details:
USN-3934-1 fixed a vulnerability in Policykit. This update provides
the corresponding update for Ubuntu 12.04 ESM.
Original advisory details:
It was discovered that PolicyKit incorrectly relied on the fork() system
call in the Linux kernel being atomic. A local attacker could possibly use
this issue to gain access to services that have cached authorizations.
Update instructions:
The problem can be corrected by updating your system to the following
package versions:
Ubuntu 12.04 ESM:
libpolkit-backend-1-0 0.104-1ubuntu1.5
policykit-1 0.104-1ubuntu1.5
After a standard system update you need to reboot your computer to make
all the necessary changes.
References:
https://usn.ubuntu.com/3934-2
https://usn.ubuntu.com/3934-1
CVE-2019-6133
© 2024 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed