It was discovered that PolicyKit incorrectly relied on the fork() system call in the Linux kernel being atomic. A local attacker could possibly use this issue to gain access to services that have cached authorizations.
{ "binaries": [ { "binary_name": "gir1.2-polkit-1.0", "binary_version": "0.105-4ubuntu3.14.04.6" }, { "binary_name": "libpolkit-agent-1-0", "binary_version": "0.105-4ubuntu3.14.04.6" }, { "binary_name": "libpolkit-agent-1-0-dbgsym", "binary_version": "0.105-4ubuntu3.14.04.6" }, { "binary_name": "libpolkit-agent-1-dev", "binary_version": "0.105-4ubuntu3.14.04.6" }, { "binary_name": "libpolkit-backend-1-0", "binary_version": "0.105-4ubuntu3.14.04.6" }, { "binary_name": "libpolkit-backend-1-0-dbgsym", "binary_version": "0.105-4ubuntu3.14.04.6" }, { "binary_name": "libpolkit-backend-1-dev", "binary_version": "0.105-4ubuntu3.14.04.6" }, { "binary_name": "libpolkit-gobject-1-0", "binary_version": "0.105-4ubuntu3.14.04.6" }, { "binary_name": "libpolkit-gobject-1-0-dbgsym", "binary_version": "0.105-4ubuntu3.14.04.6" }, { "binary_name": "libpolkit-gobject-1-dev", "binary_version": "0.105-4ubuntu3.14.04.6" }, { "binary_name": "policykit-1", "binary_version": "0.105-4ubuntu3.14.04.6" }, { "binary_name": "policykit-1-dbgsym", "binary_version": "0.105-4ubuntu3.14.04.6" }, { "binary_name": "policykit-1-doc", "binary_version": "0.105-4ubuntu3.14.04.6" } ], "availability": "No subscription required" }
{ "binaries": [ { "binary_name": "gir1.2-polkit-1.0", "binary_version": "0.105-14.1ubuntu0.5" }, { "binary_name": "libpolkit-agent-1-0", "binary_version": "0.105-14.1ubuntu0.5" }, { "binary_name": "libpolkit-agent-1-0-dbgsym", "binary_version": "0.105-14.1ubuntu0.5" }, { "binary_name": "libpolkit-agent-1-dev", "binary_version": "0.105-14.1ubuntu0.5" }, { "binary_name": "libpolkit-backend-1-0", "binary_version": "0.105-14.1ubuntu0.5" }, { "binary_name": "libpolkit-backend-1-0-dbgsym", "binary_version": "0.105-14.1ubuntu0.5" }, { "binary_name": "libpolkit-backend-1-dev", "binary_version": "0.105-14.1ubuntu0.5" }, { "binary_name": "libpolkit-gobject-1-0", "binary_version": "0.105-14.1ubuntu0.5" }, { "binary_name": "libpolkit-gobject-1-0-dbgsym", "binary_version": "0.105-14.1ubuntu0.5" }, { "binary_name": "libpolkit-gobject-1-dev", "binary_version": "0.105-14.1ubuntu0.5" }, { "binary_name": "policykit-1", "binary_version": "0.105-14.1ubuntu0.5" }, { "binary_name": "policykit-1-dbgsym", "binary_version": "0.105-14.1ubuntu0.5" }, { "binary_name": "policykit-1-doc", "binary_version": "0.105-14.1ubuntu0.5" } ], "availability": "No subscription required" }
{ "binaries": [ { "binary_name": "gir1.2-polkit-1.0", "binary_version": "0.105-20ubuntu0.18.04.5" }, { "binary_name": "libpolkit-agent-1-0", "binary_version": "0.105-20ubuntu0.18.04.5" }, { "binary_name": "libpolkit-agent-1-0-dbgsym", "binary_version": "0.105-20ubuntu0.18.04.5" }, { "binary_name": "libpolkit-agent-1-dev", "binary_version": "0.105-20ubuntu0.18.04.5" }, { "binary_name": "libpolkit-backend-1-0", "binary_version": "0.105-20ubuntu0.18.04.5" }, { "binary_name": "libpolkit-backend-1-0-dbgsym", "binary_version": "0.105-20ubuntu0.18.04.5" }, { "binary_name": "libpolkit-backend-1-dev", "binary_version": "0.105-20ubuntu0.18.04.5" }, { "binary_name": "libpolkit-gobject-1-0", "binary_version": "0.105-20ubuntu0.18.04.5" }, { "binary_name": "libpolkit-gobject-1-0-dbgsym", "binary_version": "0.105-20ubuntu0.18.04.5" }, { "binary_name": "libpolkit-gobject-1-dev", "binary_version": "0.105-20ubuntu0.18.04.5" }, { "binary_name": "policykit-1", "binary_version": "0.105-20ubuntu0.18.04.5" }, { "binary_name": "policykit-1-dbgsym", "binary_version": "0.105-20ubuntu0.18.04.5" }, { "binary_name": "policykit-1-doc", "binary_version": "0.105-20ubuntu0.18.04.5" } ], "availability": "No subscription required" }