Stay Vigilant with Timely Linux Security Advisories

Refine advisories

X Clear Filters

Important (4)

Dovecot (141)

debian (8034)

denial of service (18299)

important (27751)

information leak (1384)

security advisory (114945)

critical (18622)

gsasl (5)

security update (9017)

SuSE (3977)

Rocky Linux (1)

Published Date Range

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Linux Advisory Watch

Linux Security Week

Community Poll

More Polls

What got you started with Linux?

Message!

Self-taught through trial and error
Formal training or courses
A job that required it
Other

No answer selected. Please try again.

Please select either existing option or enter your own, however not both.

Please select minimum {0} answer(s).

Please select maximum {0} answer(s).

/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json

150

radio

Self-taught through trial and error (78.42%)

78.42% votes

Formal training or courses (4.32%)

4.32% votes

A job that required it (4.89%)

4.89% votes

Other (12.37%)

12.37% votes

[{"id":483,"title":"Self-taught through trial and error","votes":545,"type":"x","order":1,"pct":78.42,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.32,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.89,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.37,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350

bottom 200

Ubuntu 25.10 kmod Critical Algif_aead Privilege Escalation USN-8226-1

Ubuntu 26.04 LTS nginx Critical Denial of Service 2026-42945

Ubuntu 26.04 Docker Critical Security Threats USN-8230-1 CVE-2026-33747

Debian OpenSSH Critical DSA-6204-1 CVE-2026-3497 Remote DoS Execution

Explore Latest Linux Security advisories

We found -4 articles for you...

219

security advisorysecurity issuevulnerability

Rocky Linux 8 RLSA-2021:2238 Important Polkit Security Fix

Important: polkit security update. \{'type': 'Security', 'shortCode': 'RL', 'name': 'RLSA-2021:2238', 'synopsis': 'Important: polkit security update', 'severity': 'Important', 'topic': 'An update for polkit is now available for Rocky Linux 8.\nRocky Linux Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.', 'description': 'The polkit packages provide a component for controlling system-wide privileges. This component provides a uniform and organized way for non-privileged processes to communicate with privileged ones.\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.', 'solution': None, 'affectedProducts': ['Rocky Linux 8'], 'fixes': ['1961710'], 'cves': ['Red Hat:::https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-3560.json:::CVE-2021-3560'], 'references': [], 'publishedAt': '2021-07-22T03:12:56.671596Z', 'rpms': ['polkit-0.115-11.el8_4.1.aarch64.rpm', 'polkit-0.115-11.el8_4.1.src.rpm', 'polkit-0.115-11.el8_4.1.x86_64.rpm', 'polkit-debuginfo-0.115-11.el8_4.1.aarch64.rpm', 'polkit-debuginfo-0.115-11.el8_4.1.i686.rpm', 'polkit-debuginfo-0.115-11.el8_4.1.x86_64.rpm', 'polkit-debugsource-0.115-11.el8_4.1.aarch64.rpm', 'polkit-debugsource-0.115-11.el8_4.1.i686.rpm', 'polkit-debugsource-0.115-11.el8_4.1.x86_64.rpm', 'polkit-devel-0.115-11.el8_4.1.aarch64.rpm', 'polkit-devel-0.115-11.el8_4.1.i686.rpm', 'polkit-devel-0.115-11.el8_4.1.x86_64.rpm', 'polkit-docs-0.115-11.el8_4.1.noarch.rpm', 'polkit-libs-0.115-11.el8_4.1.aarch64.rpm', 'polkit-libs-0.115-11.el8_4.1.i686.rpm', 'polkit-libs-0.115-11.el8_4.1.x86_64.rpm', 'polkit-libs-debuginfo-0.115-11.el8_4.1.aarch64.rpm', 'polkit-libs-debuginfo-0.115-11.el8_4.1.i686.rpm','polkit-libs-debuginfo-0.115-11.el8_4.1.x86_64.rpm']}\. Fedora Linux introduces a crucial SELinux patch enhancing security measures and managing user permissions effectively.. Rocky Linux, Polkit Security, Important Update, System Privileges. . Severity: Important. LinuxSecurity.com Team

Sep 02, 2022 •Important Rocky Linux

security advisorysecurity updateRed Hat Enterprise Linux

Red Hat Enterprise Linux: RHSA-2022:1546-01 Moderate Polkit Security Threat

An update for polkit is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 ==================================================================== Red Hat Security Advisory Synopsis: Moderate: polkit security update Advisory ID: RHSA-2022:1546-01 Product: Red Hat Enterprise Linux Advisory URL: https://access.redhat.com/errata/RHSA-2022:1546 Issue date: 2022-04-26 CVE Names: CVE-2021-4115 ==================================================================== 1. Summary: An update for polkit is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. 2. Relevant releases/architectures: Red Hat Enterprise Linux BaseOS (v. 8) - aarch64, noarch, ppc64le, s390x, x86_64 3. Description: The polkit packages provide a component for controlling system-wide privileges. This component provides a uniform and organized way for non-privileged processes to communicate with privileged ones. Security Fix(es): * polkit: file descriptor leak allows an unprivileged user to cause a crash (CVE-2021-4115) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. 4. Solution: For details on how to apply this update, which includes the changes described in this advisory, refer to: https://access.redhat.com/articles/11258 5. Bugs fixed (https://bugzilla.redhat.com/): 2007534 - CVE-2021-4115 polkit: file descriptorleak allows an unprivileged user to cause a crash 6. Package List: Red Hat Enterprise Linux BaseOS (v. 8): Source: polkit-0.115-13.el8_5.2.src.rpm aarch64: polkit-0.115-13.el8_5.2.aarch64.rpm polkit-debuginfo-0.115-13.el8_5.2.aarch64.rpm polkit-debugsource-0.115-13.el8_5.2.aarch64.rpm polkit-devel-0.115-13.el8_5.2.aarch64.rpm polkit-libs-0.115-13.el8_5.2.aarch64.rpm polkit-libs-debuginfo-0.115-13.el8_5.2.aarch64.rpm noarch: polkit-docs-0.115-13.el8_5.2.noarch.rpm ppc64le: polkit-0.115-13.el8_5.2.ppc64le.rpm polkit-debuginfo-0.115-13.el8_5.2.ppc64le.rpm polkit-debugsource-0.115-13.el8_5.2.ppc64le.rpm polkit-devel-0.115-13.el8_5.2.ppc64le.rpm polkit-libs-0.115-13.el8_5.2.ppc64le.rpm polkit-libs-debuginfo-0.115-13.el8_5.2.ppc64le.rpm s390x: polkit-0.115-13.el8_5.2.s390x.rpm polkit-debuginfo-0.115-13.el8_5.2.s390x.rpm polkit-debugsource-0.115-13.el8_5.2.s390x.rpm polkit-devel-0.115-13.el8_5.2.s390x.rpm polkit-libs-0.115-13.el8_5.2.s390x.rpm polkit-libs-debuginfo-0.115-13.el8_5.2.s390x.rpm x86_64: polkit-0.115-13.el8_5.2.x86_64.rpm polkit-debuginfo-0.115-13.el8_5.2.i686.rpm polkit-debuginfo-0.115-13.el8_5.2.x86_64.rpm polkit-debugsource-0.115-13.el8_5.2.i686.rpm polkit-debugsource-0.115-13.el8_5.2.x86_64.rpm polkit-devel-0.115-13.el8_5.2.i686.rpm polkit-devel-0.115-13.el8_5.2.x86_64.rpm polkit-libs-0.115-13.el8_5.2.i686.rpm polkit-libs-0.115-13.el8_5.2.x86_64.rpm polkit-libs-debuginfo-0.115-13.el8_5.2.i686.rpm polkit-libs-debuginfo-0.115-13.el8_5.2.x86_64.rpm These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key/ 7. References: https://access.redhat.com/security/cve/CVE-2021-4115 https://access.redhat.com/security/updates/classification/#moderate 8. Contact: The Red Hat security contact is . More contact details at https://access.redhat.com/security/team/contact/ Copyright 2022 Red Hat, Inc. -----BEGIN PGP SIGNATURE----- Version: GnuPGv1 iQIVAwUBYmjDstzjgjWX9erEAQhoTg/9FUrtS4lsoCL5Gy1dcC1dhvJn0S4iOb+5 djcCXm3UYIzG8nGvUq/wTzDmcWHgMBbTkyyiiX8b5oye7KET/MyCFuVb+1M9SbR9 xq47m1xwdoMNk0OzXfL+jA5avFmXxaW/s5uedFKbEr4FQ+MCyJu0fpCJjFH93w1+ QrFZXgm9XcNnUrRQZTr5DcT3XnA3dyp2U87cmr9GFUHsln0Xlmn7K8bmDy9jEPWJ 2Fkiy/ttOokZy+bftzTvTF7lnXN3UQEGJu65ptDw4ttXb7alKo9R4tow/u+UcwC4 Ks+PCfJXwTHWHwO3lN+qGJGlq/pXaopiH0DBVOI2OIKGRcsBT8ADyd/h7vOoKO70 DreK+n8TdBsmQMKHx2zNQ5T3eGmZd/UyYdpv+IPVDWbEvS506aIOSRfk07KKiks9 RcuRD/Ykum+0bPBmGPCJUK7pKdlPoBNnWVtkOEHGdNPdMs0dmUokir4rhb2Wt5s4 Jy9jmdcbHBR3EfDYsd7a3BUadeNNQMWSKJEcP3lrUUPy+0CUWcEpAd7Saaqq2Jon ofRZ+1jlBXorHonkEuW+8YyAqE+AhjkYSEImw3yU8vekFjde4XA/p4I8KouAk8LR 0cB/YY8/cbpuH1MjK/6CyeNMITiVdTsfkS2vhpyg0eULoDF6QRYZdhg4rnUzWkUW AWhxKLGHSWw=BreN -----END PGP SIGNATURE----- -- RHSA-announce mailing list This email address is being protected from spambots. You need JavaScript enabled to view it. https://listman.redhat.com/mailman/listinfo/rhsa-announce . A security bulletin concerning polkit for Red Hat 8, highlighting a moderate vulnerability that could lead to significant system ramifications.. polkit Update, Red Hat Enterprise, Moderate Security Advisory, Linux Product Security. . LinuxSecurity.com Team

Apr 27, 2022 Red Hat

security advisoryRed Hat Enterprise Linuxthreat

Red Hat Enterprise Linux 8: RHSA-2022-0267 Important Polkit Escalation Risk

An update for polkit is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 ==================================================================== Red Hat Security Advisory Synopsis: Important: polkit security update Advisory ID: RHSA-2022:0267-02 Product: Red Hat Enterprise Linux Advisory URL: https://access.redhat.com/errata/RHSA-2022:0267 Issue date: 2022-01-25 CVE Names: CVE-2021-4034 ==================================================================== 1. Summary: An update for polkit is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. 2. Relevant releases/architectures: Red Hat Enterprise Linux BaseOS (v. 8) - aarch64, noarch, ppc64le, s390x, x86_64 3. Description: The polkit packages provide a component for controlling system-wide privileges. This component provides a uniform and organized way for non-privileged processes to communicate with privileged ones. Security Fix(es): * polkit: Local privilege escalation in pkexec due to incorrect handling of argument vector (CVE-2021-4034) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. 4. Solution: For details on how to apply this update, which includes the changes described in this advisory, refer to: https://access.redhat.com/articles/11258 5. Bugs fixed (https://bugzilla.redhat.com/): 2025869 - CVE-2021-4034 polkit: Localprivilege escalation in pkexec due to incorrect handling of argument vector 6. Package List: Red Hat Enterprise Linux BaseOS (v. 8): Source: polkit-0.115-13.el8_5.1.src.rpm aarch64: polkit-0.115-13.el8_5.1.aarch64.rpm polkit-debuginfo-0.115-13.el8_5.1.aarch64.rpm polkit-debugsource-0.115-13.el8_5.1.aarch64.rpm polkit-devel-0.115-13.el8_5.1.aarch64.rpm polkit-libs-0.115-13.el8_5.1.aarch64.rpm polkit-libs-debuginfo-0.115-13.el8_5.1.aarch64.rpm noarch: polkit-docs-0.115-13.el8_5.1.noarch.rpm ppc64le: polkit-0.115-13.el8_5.1.ppc64le.rpm polkit-debuginfo-0.115-13.el8_5.1.ppc64le.rpm polkit-debugsource-0.115-13.el8_5.1.ppc64le.rpm polkit-devel-0.115-13.el8_5.1.ppc64le.rpm polkit-libs-0.115-13.el8_5.1.ppc64le.rpm polkit-libs-debuginfo-0.115-13.el8_5.1.ppc64le.rpm s390x: polkit-0.115-13.el8_5.1.s390x.rpm polkit-debuginfo-0.115-13.el8_5.1.s390x.rpm polkit-debugsource-0.115-13.el8_5.1.s390x.rpm polkit-devel-0.115-13.el8_5.1.s390x.rpm polkit-libs-0.115-13.el8_5.1.s390x.rpm polkit-libs-debuginfo-0.115-13.el8_5.1.s390x.rpm x86_64: polkit-0.115-13.el8_5.1.x86_64.rpm polkit-debuginfo-0.115-13.el8_5.1.i686.rpm polkit-debuginfo-0.115-13.el8_5.1.x86_64.rpm polkit-debugsource-0.115-13.el8_5.1.i686.rpm polkit-debugsource-0.115-13.el8_5.1.x86_64.rpm polkit-devel-0.115-13.el8_5.1.i686.rpm polkit-devel-0.115-13.el8_5.1.x86_64.rpm polkit-libs-0.115-13.el8_5.1.i686.rpm polkit-libs-0.115-13.el8_5.1.x86_64.rpm polkit-libs-debuginfo-0.115-13.el8_5.1.i686.rpm polkit-libs-debuginfo-0.115-13.el8_5.1.x86_64.rpm These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key 7. References: https://access.redhat.com/security/cve/CVE-2021-4034 https://access.redhat.com/security/updates/classification#important https://access.redhat.com/security/vulnerabilities/RHSB-2022-001 8. Contact: The Red Hat security contact is . More contact details at https://access.redhat.com/security/team/contact Copyright 2022 Red Hat,Inc. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1 iQIVAwUBYfCFSNzjgjWX9erEAQjH5g/+Ow1LenqO68H0K6bmZODmtmddFl/JaIly 5Ggqn2I5E73G6EIQc8mjaby1Nlp7mpZd0zoXuk4fsoOUx7jv70Vuf7cbYr56ojuu 9NTAHtPh62Dh320JlMlIO3e8DXjd2m13+MlycjlczGt+d14yj88CfItr9H39DXtR /0KnoglLvo/K8296xl3BD5x9xMB7DQFoOznpsDkIIv9znEpXDDduo8aZ6PQHINdo lrjjzaWYKavpnblRYEX1tTHpG3T9FHoV+9VQXKHFjtwR+ZQ2xq3bWebvUwCLxtYi Mzs0tWwA7AiunvoxEdga9vz/1mIPI/rx9MxrzeinOQxQ9oCX6XQsoDBTGr8KZFq1 83BNqaIZyCa7ng6sbH84sG/FNRyTisNDNTVaW/vU3hVGP/chJrpVRuJqmp2oVtXg Vhn6yfpbRqA6lmSUvh8sJQlLKnUvsfXBs0GSr9mHW8qoeDRSKXbgd+KpxIakkAOd Jg2R1C1aTi86Nb3+NEbDd8Z2+OidFg4l1nD13lYh6Edwyr8dMGhL80JB4WEr8Nih BgzN9HbqkTjPxMzwc/cfqM4hZnCO55zE5KWqsVifRY0OA/dbjfpAiTjFNMcRPGDN ShGNyfsuIvlr4W1HJfTs8vTAB0W9JgamtjKfef07ZAw3dCu4b2Qsf5AjkIIyyL1k KENkA/YGKSA=hm0D -----END PGP SIGNATURE----- -- RHSA-announce mailing list This email address is being protected from spambots. You need JavaScript enabled to view it. . Canonical issued a critical security patch for apparmor, which mitigates unauthorized access risks. Discover the implementation steps.. Red Hat Enterprise Linux, polkit Update, Local Escalation, System Privileges. . Severity: Important. LinuxSecurity.com Team

Jan 25, 2022 •Important Red Hat

security advisoryupdateimportant

Red Hat Enterprise Linux 7.4: RHSA-2019-2699-01 Important: Auth Hijacking

An update for polkit is now available for Red Hat Enterprise Linux 7.4 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score,. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 ==================================================================== Red Hat Security Advisory Synopsis: Important: polkit security update Advisory ID: RHSA-2019:2699-01 Product: Red Hat Enterprise Linux Advisory URL: https://access.redhat.com/errata/RHSA-2019:2699 Issue date: 2019-09-10 CVE Names: CVE-2019-6133 ==================================================================== 1. Summary: An update for polkit is now available for Red Hat Enterprise Linux 7.4 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. 2. Relevant releases/architectures: Red Hat Enterprise Linux ComputeNode EUS (v. 7.4) - x86_64 Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.4) - noarch, x86_64 Red Hat Enterprise Linux Server EUS (v. 7.4) - noarch, ppc64, ppc64le, s390x, x86_64 3. Description: The polkit packages provide a component for controlling system-wide privileges. This component provides a uniform and organized way for non-privileged processes to communicate with privileged ones. Security Fix(es): * polkit: Temporary auth hijacking via PID reuse and non-atomic fork (CVE-2019-6133) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. 4. Solution: For details on how to apply this update, which includes the changes described in this advisory, referto: https://access.redhat.com/articles/11258 5. Bugs fixed (https://bugzilla.redhat.com/): 1664212 - CVE-2019-6133 polkit: Temporary auth hijacking via PID reuse and non-atomic fork 6. Package List: Red Hat Enterprise Linux ComputeNode EUS (v. 7.4): Source: polkit-0.112-12.el7_4.1.src.rpm x86_64: polkit-0.112-12.el7_4.1.i686.rpm polkit-0.112-12.el7_4.1.x86_64.rpm polkit-debuginfo-0.112-12.el7_4.1.i686.rpm polkit-debuginfo-0.112-12.el7_4.1.x86_64.rpm Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.4): noarch: polkit-docs-0.112-12.el7_4.1.noarch.rpm x86_64: polkit-debuginfo-0.112-12.el7_4.1.i686.rpm polkit-debuginfo-0.112-12.el7_4.1.x86_64.rpm polkit-devel-0.112-12.el7_4.1.i686.rpm polkit-devel-0.112-12.el7_4.1.x86_64.rpm Red Hat Enterprise Linux Server EUS (v. 7.4): Source: polkit-0.112-12.el7_4.1.src.rpm noarch: polkit-docs-0.112-12.el7_4.1.noarch.rpm ppc64: polkit-0.112-12.el7_4.1.ppc.rpm polkit-0.112-12.el7_4.1.ppc64.rpm polkit-debuginfo-0.112-12.el7_4.1.ppc.rpm polkit-debuginfo-0.112-12.el7_4.1.ppc64.rpm polkit-devel-0.112-12.el7_4.1.ppc.rpm polkit-devel-0.112-12.el7_4.1.ppc64.rpm ppc64le: polkit-0.112-12.el7_4.1.ppc64le.rpm polkit-debuginfo-0.112-12.el7_4.1.ppc64le.rpm polkit-devel-0.112-12.el7_4.1.ppc64le.rpm s390x: polkit-0.112-12.el7_4.1.s390.rpm polkit-0.112-12.el7_4.1.s390x.rpm polkit-debuginfo-0.112-12.el7_4.1.s390.rpm polkit-debuginfo-0.112-12.el7_4.1.s390x.rpm polkit-devel-0.112-12.el7_4.1.s390.rpm polkit-devel-0.112-12.el7_4.1.s390x.rpm x86_64: polkit-0.112-12.el7_4.1.i686.rpm polkit-0.112-12.el7_4.1.x86_64.rpm polkit-debuginfo-0.112-12.el7_4.1.i686.rpm polkit-debuginfo-0.112-12.el7_4.1.x86_64.rpm polkit-devel-0.112-12.el7_4.1.i686.rpm polkit-devel-0.112-12.el7_4.1.x86_64.rpm These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key 7.References: https://access.redhat.com/security/cve/CVE-2019-6133 https://access.redhat.com/security/updates/classification#important 8. Contact: The Red Hat security contact is . More contact details at https://access.redhat.com/security/team/contact Copyright 2019 Red Hat, Inc. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1 iQIVAwUBXXepcdzjgjWX9erEAQg7yA/9EovZrEtyMCBP7LRDpOKDLQ0wR4SfU4+d 4F0FC3dHUQiEzaw44P4E8NJJNra20p9aKqQApu/MXcutoo/qUmFiAH0YH6aSbB4U iOIUe0LxK74MjcP7vqi6XfLSKHMC3Ji4Wlbwd1gd7zEzgNuFEAEaBJ4Hs9PJfxxt Ns+KKSrpsIxvvUfjTwBo2vabK6tu9sdLW7xc4SdKxvyUZctdxpBs0NGbiS4gM0Zq AM4JdY/W9mVFt8B7QPHikx6lr/sjnL1z72TqxMgKHoD2wXjg//OXx3eJdUcj396A +Htwfkg3oOp6QvbYkegXxBSdKMBBcUYfBF8zUwHESPzDJm0uJ71E2q3SvJ4TM8jH BdAEqofo7j7WnbBTGHC6wMLSUgyHOMXx9XM8M6CJXcZQTsfxLxOaIu4zj3CHSiQt l6sb0UvgwqBJgWsX9RAvwy073bz4PERIduEciQwdTcULsNTt6GNUabkOg6j6kYqh 9Z0dTvKZzkoHOArqbAoFKUbCkPLpeDk4syqSzrUGas2LivT8j5p06uTWCI5SJxW/ TltOt2H9hMxHj8w0XCGNhWoQZmCnu+BlgtkRJjauAhFBlXIJ0Jtv9wpub5mcSatx usSoOYZ7gtcdFUzy17hJiqYQKkoqey5cwhVCycRxcTjAeI0kRElV1LLOv7Hkt4mV 8vuL6oBMkoY=jhxx -----END PGP SIGNATURE----- -- RHSA-announce mailing list This email address is being protected from spambots. You need JavaScript enabled to view it. . Canonical releases a critical patch for the Snapd service in Ubuntu 20.04 LTS. Vital for ensuring robust security protocols.. Red Hat Update, Polkit Security, System Privileges Update. . Severity: Important. LinuxSecurity.com Team

Sep 10, 2019 •Important Red Hat

security advisorysecurity updateRed Hat

RedHat: RHSA-2019-0832-01 Important: Polkit Auth Hijacking Fix

An update for polkit is now available for Red Hat Enterprise Linux 6.6 Advanced Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score,. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 ==================================================================== Red Hat Security Advisory Synopsis: Important: polkit security update Advisory ID: RHSA-2019:0832-01 Product: Red Hat Enterprise Linux Advisory URL: https://access.redhat.com/errata/RHSA-2019:0832 Issue date: 2019-04-23 CVE Names: CVE-2019-6133 ==================================================================== 1. Summary: An update for polkit is now available for Red Hat Enterprise Linux 6.6 Advanced Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. 2. Relevant releases/architectures: Red Hat Enterprise Linux Server AUS (v. 6.6) - noarch, x86_64 3. Description: The polkit packages provide a component for controlling system-wide privileges. This component provides a uniform and organized way for non-privileged processes to communicate with privileged ones. Security Fix(es): * polkit: Temporary auth hijacking via PID reuse and non-atomic fork (CVE-2019-6133) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. 4. Solution: For details on how to apply this update, which includes the changes described in this advisory, refer to: https://access.redhat.com/articles/11258 5. Bugs fixed (https://bugzilla.redhat.com/): 1664212 - CVE-2019-6133 polkit: Temporary auth hijacking via PID reuse and non-atomic fork 6. PackageList: Red Hat Enterprise Linux Server AUS (v. 6.6): Source: polkit-0.96-7.el6_6.1.src.rpm noarch: polkit-desktop-policy-0.96-7.el6_6.1.noarch.rpm x86_64: polkit-0.96-7.el6_6.1.i686.rpm polkit-0.96-7.el6_6.1.x86_64.rpm polkit-debuginfo-0.96-7.el6_6.1.i686.rpm polkit-debuginfo-0.96-7.el6_6.1.x86_64.rpm polkit-devel-0.96-7.el6_6.1.i686.rpm polkit-devel-0.96-7.el6_6.1.x86_64.rpm polkit-docs-0.96-7.el6_6.1.x86_64.rpm These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key/ 7. References: https://access.redhat.com/security/cve/CVE-2019-6133 https://access.redhat.com/security/updates/classification/#important 8. Contact: The Red Hat security contact is . More contact details at https://access.redhat.com/security/team/contact/ Copyright 2019 Red Hat, Inc. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1 iQIVAwUBXL8MmNzjgjWX9erEAQgbgBAAofMSGIRF9DcjazFQmOj49K2p1KJH2SAD cEGBJDkL6TG9nOFP7XN2oSc85JzgFgmSxMSZyhUcj/ZGDxCyM9Z8gZQWmUrhiysy kxbsDIPlgeg4+UhH1Xsqed98DVxq4RUFLskucCVJLUHSmz/xwhQ9ABdO7gnqftlX lwFkgmB4yOm1D/BIK04JKoVZ+j5/YQ//mNi4DIIEq+fS32rgecSf9mtQBLxg1J6i W3St/VDk3UUpx6sKeSRUinCRJ3zWDoENya8yooOnnd4aFV16qxZR14aC9BGA7Sih YmlSLZPA1Dy3GMNPXtS6R4OM0XarQlchSFv2Sibmg2ePBVEDXoTGEeb9N3s9rH10 xJdICOsZ1p7ZZbEa016XZxn193am/jxSdvItctb2m2BXGHVxsuG2rgZBoqxfcuQd LKP/x3Z1rpdOgcAq53SxF5wnzXsDdBtPiOQBdE9+bChbY2NXG2wUE/viXgVCv6NL RMtVRBsGFNojTbrpbwJEO2LTGbRshgMDkEJyHG7mzjsGjZRagvhnuxTFQYDknmUu zSGKPsJC5DTGoqsVmG+3alIBDMM8savGLvG/lxldYxOvCiCSPCKMnCGy4CFjO1b5 67bPJ96T5mmYi+r6LKLqieJ3ey+zLgZjmlPhalVl93zMKL8QXvZ+h47be1gtnLPE OgewN42MB/s=g92b -----END PGP SIGNATURE----- -- RHSA-announce mailing list This email address is being protected from spambots. You need JavaScript enabled to view it. . Crucial polkit security patch for Red Hat Enterprise Linux 6.6 mitigates authentication bypass vulnerabilities successfully.. Red Hat Linux, polkit update, security advisory, auth hijacking, enterprise support. . Severity: Important. LinuxSecurity.com Team

Apr 23, 2019 •Important Red Hat

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Linux Advisory Watch

Linux Security Week

Community Poll

More Polls

What got you started with Linux?

Message!

Self-taught through trial and error
Formal training or courses
A job that required it
Other

No answer selected. Please try again.

Please select either existing option or enter your own, however not both.

Please select minimum {0} answer(s).

Please select maximum {0} answer(s).

/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json

150

radio

Self-taught through trial and error (78.42%)

78.42% votes

Formal training or courses (4.32%)

4.32% votes

A job that required it (4.89%)

4.89% votes

Other (12.37%)

12.37% votes

bottom 200

Stay Secure with the Latest Linux Advisories

Debian Dovecot High Severity Service Disruption Info Leak Flaw DLA-4617-1

Debian 11 gsasl Critical DoS Threat Advisory DLA-4618-1 CVE-2026-48829

SUSE MozillaThunderbird Important Memory Safety Fix Advisory 2026-2271-1

SUSE Linux Micro 6.0 Ignition Key HTTP Transport Loop Patch 2026-21987-1

SUSE Linux Micro 6.0 Important Libzypp Libsolv Security Update 2026-21988-1

SUSE Google-Guest-Agent Important Security Update 2026-21989-1

SUSE Linux Micro Important Salt Multi-Linux Manager Vuln 2026-21990-1

SUSE Linux Micro Critical Ignition Patch CVE-2026-33814

SUSE Linux Micro 6.1 Security Update for libzypp libsolv Key 2026-21992-1

Refine advisories

Get the latest News and Insights

Community Poll

What got you started with Linux?

Trending News

Ubuntu 25.10 kmod Critical Algif_aead Privilege Escalation USN-8226-1

Ubuntu 26.04 LTS nginx Critical Denial of Service 2026-42945

Ubuntu 26.04 Docker Critical Security Threats USN-8230-1 CVE-2026-33747

Debian OpenSSH Critical DSA-6204-1 CVE-2026-3497 Remote DoS Execution

Explore Latest Linux Security advisories

Rocky Linux 8 RLSA-2021:2238 Important Polkit Security Fix

Red Hat Enterprise Linux: RHSA-2022:1546-01 Moderate Polkit Security Threat

Red Hat Enterprise Linux 8: RHSA-2022-0267 Important Polkit Escalation Risk

Red Hat Enterprise Linux 7.4: RHSA-2019-2699-01 Important: Auth Hijacking

RedHat: RHSA-2019-0832-01 Important: Polkit Auth Hijacking Fix

Get the latest News and Insights

Community Poll

What got you started with Linux?

Trending News

Ubuntu 25.10 kmod Critical Algif_aead Privilege Escalation USN-8226-1

Ubuntu 26.04 LTS nginx Critical Denial of Service 2026-42945

Ubuntu 26.04 Docker Critical Security Threats USN-8230-1 CVE-2026-33747

Debian OpenSSH Critical DSA-6204-1 CVE-2026-3497 Remote DoS Execution

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!

Stay Secure with the Latest Linux Advisories

Debian Dovecot High Severity Service Disruption Info Leak Flaw DLA-4617-1

Debian 11 gsasl Critical DoS Threat Advisory DLA-4618-1 CVE-2026-48829

SUSE MozillaThunderbird Important Memory Safety Fix Advisory 2026-2271-1

SUSE Linux Micro 6.0 Ignition Key HTTP Transport Loop Patch 2026-21987-1

SUSE Linux Micro 6.0 Important Libzypp Libsolv Security Update 2026-21988-1

SUSE Google-Guest-Agent Important Security Update 2026-21989-1

SUSE Linux Micro Important Salt Multi-Linux Manager Vuln 2026-21990-1

SUSE Linux Micro Critical Ignition Patch CVE-2026-33814

SUSE Linux Micro 6.1 Security Update for libzypp libsolv Key 2026-21992-1

Refine advisories

severity

Topics

Distro

Published Date

Get the latest News and Insights

Community Poll

What got you started with Linux?

Trending News

Explore Latest Linux Security advisories

Get the latest News and Insights

Community Poll

What got you started with Linux?

Trending News

Search Topics

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!