Debian LTS: DLA-1644-1: policykit-1 security update

    Date28 Jan 2019
    CategoryDebian LTS
    940
    Posted ByAnthony Pell
    Two vulnerabilities were found in Policykit, a framework for managing administrative policies and privileges: CVE-2018-19788
    
    Package        : policykit-1
    Version        : 0.105-15~deb8u4
    CVE ID         : CVE-2018-19788 CVE-2019-6133
    
    Two vulnerabilities were found in Policykit, a framework for managing
    administrative policies and privileges:
    
    CVE-2018-19788
    
        It was discovered that incorrect processing of very high UIDs in
        Policykit could result in authentication bypass.
    
    CVE-2019-6133
    
        Jann Horn of Google found that Policykit doesn't properly check
        if a process is already authenticated, which can lead to an
        authentication reuse by a different user.
    
    For Debian 8 "Jessie", these problems have been fixed in version
    0.105-15~deb8u4.
    
    We recommend that you upgrade your policykit-1 packages.
    
    Further information about Debian LTS security advisories, how to apply
    these updates to your system and frequently asked questions can be
    found at: https://wiki.debian.org/LTS
    
    You are not authorised to post comments.

    Comments powered by CComment

    LinuxSecurity Poll

    What do you think of the articles on LinuxSecurity?

    No answer selected. Please try again.
    Please select either existing option or enter your own, however not both.
    Please select minimum 0 answer(s) and maximum 3 answer(s).
    /main-polls/24-what-do-you-think-of-the-quality-of-the-articles-on-linuxsecurity?task=poll.vote&format=json
    24
    radio
    [{"id":"87","title":"Excellent, don't change a thing!","votes":"25","type":"x","order":"1","pct":54.35,"resources":[]},{"id":"88","title":"Should be more technical","votes":"5","type":"x","order":"2","pct":10.87,"resources":[]},{"id":"89","title":"Should include more HOWTOs","votes":"16","type":"x","order":"3","pct":34.78,"resources":[]}]["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"]["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"]350
    bottom200

    We use cookies to provide and improve our services. By using our site, you consent to our Cookie Policy.