PolicyKit could allow unintended access.
Software Description:
- policykit-1: framework for managing administrative policies and
privileges
Details:
USN-3861-1 fixed a vulnerability in PolicyKit. This update provides
the corresponding update for Ubuntu 12.04 ESM.
Original advisory details:
It was discovered that PolicyKit incorrectly handled certain large
user UIDs. A local attacker with a large UID could possibly use this
issue to perform privileged actions.
The problem can be corrected by updating your system to the following package versions: Ubuntu 12.04 ESM: libpolkit-backend-1-0 0.104-1ubuntu1.4 policykit-1 0.104-1ubuntu1.4 After a standard system update you need to reboot your computer to make all the necessary changes.
https://ubuntu.com/security/notices/USN-3861-1
CVE-2018-19788
Get the latest Linux and open source security news straight to your inbox.