This document covers a vulnerability in policy kit (polkit) used on many Linux distributions, which enables an unprivileged local user to get a privileged shell (root) on the system by manually sending dbus messages to the dbus-daemon, then killing the request before it has been fully processed.
ff7bcacb2c7403598821beac18efca74a1f7003754707a0f87aff49223d1293a