Debian update for policykit-1

Published: 2018-12-07 10:01:19 | Updated: 2018-12-07
Severity Low
Patch available YES
Number of vulnerabilities 1
CVE ID CVE-2018-19788
CVSSv3 7.2 [CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:P/RL:W/RC:C]
CWE ID CWE-77
Exploitation vector Local
Public exploit Public exploit code for vulnerability #1 is available.
Vulnerable software Debian Linux
Vulnerable software versions Debian Linux -
Vendor URL Debian

Security Advisory

1) Command injection

Description

The vulnerability allows a local authenticated attacker to execute arbitrary commands on the target system.

The vulnerability exists due to PolicyKit's improper validation of permission requests for any low-privileged user with UID greater than INT_MAX, a constant in computer programming that defines what maximum value an integer variable can store, which equals to 2147483647 (in hexadecimal 0x7FFFFFFF). A local authenticated attacker with a uid greater than INT_MAX can execute any systemctl command.

Remediation

Update the affected package to version: 0.105-18+deb9u1

External links

https://www.debian.org/security/2018/dsa-4350

Back to List