[ALSA-2021:2238] Important: polkit security update
Type:
security
Severity:
important
Release date:
2021-06-03
Description:
The polkit packages provide a component for controlling system-wide privileges. This component provides a uniform and organized way for non-privileged processes to communicate with privileged ones. Security Fix(es): * polkit: local privilege escalation using polkit_system_bus_name_get_creds_sync() (CVE-2021-3560) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
References:
Updated packages:
  • polkit-0.115-11.el8_4.1.x86_64.rpm
  • polkit-devel-0.115-11.el8_4.1.i686.rpm
  • polkit-devel-0.115-11.el8_4.1.x86_64.rpm
  • polkit-docs-0.115-11.el8_4.1.noarch.rpm
  • polkit-libs-0.115-11.el8_4.1.i686.rpm
  • polkit-libs-0.115-11.el8_4.1.x86_64.rpm
Notes:
This page is generated automatically from Red Hat security data and has not been checked for errors. For clarification or corrections please contact the AlmaLinux Packaging Team.