RSS   Vulnerabilities for 'Polkit'   RSS

2017-02-13
 
CVE-2016-2568

 

 
pkexec, when used with --user nonpriv, allows local users to escape to the parent session via a crafted TIOCSTI ioctl call, which pushes characters to the terminal's input buffer.

 

 >>> Vendor: Freedesktop 23 Products
Poppler
Xdg-utils
Policykit
DBUS
Dbus1.0
Dbus1.1.0
Scratchbox2
Udisks
Dbus-glib
Telepathy gabble
Colord
Systemd
Accountsservice
Libdbus
Spice-gtk
Polkit
Libbsd
Virglrenderer
Libpoppler
Libice
Gst-plugins-bad
Libinput
Freetype demo programs


Copyright 2024, cxsecurity.com

 

Back to Top