Information on source package policykit-1

Available versions

ReleaseVersion
wheezy0.105-3
jessie0.105-15~deb8u2
stretch0.105-18
buster0.105-18
sid0.105-18

Open issues

BugwheezyjessiestretchbustersidDescription
CVE-2016-2568vulnerable (no DSA)vulnerable (no DSA)vulnerable (no DSA)vulnerablevulnerablepkexec, when used with --user nonpriv, allows local users to escape to ...
CVE-2015-4625vulnerable (no DSA)fixedfixedfixedfixedInteger overflow in the authentication_agent_new_cookie function in ...
CVE-2015-3255vulnerable (no DSA)fixedfixedfixedfixedThe polkit_backend_action_pool_init function in ...
CVE-2015-3218vulnerable (no DSA)fixedfixedfixedfixedThe authentication_agent_new function in ...
CVE-2013-4288vulnerable (no DSA)fixedfixedfixedfixedRace condition in PolicyKit (aka polkit) allows local users to bypass ...

Resolved issues

BugDescription
CVE-2015-3256PolicyKit (aka polkit) before 0.113 allows local users to cause a ...
CVE-2011-4945PolicyKit 0.103 sets the AdminIdentities to "wheel" by default, which ...
CVE-2011-1485Race condition in the pkexec utility and polkitd daemon in PolicyKit ...
CVE-2010-0750pkexec.c in pkexec in libpolkit in PolicyKit 0.96 allows local users ...
CVE-2008-1658Format string vulnerability in the grant helper ...

Security announcements

DSA / DLADescription
DSA-2319-1policykit-1 - race condition
Search for package or bug name: Reporting problems