[3.6] polkit: Improper handling of user with uid > INT_MAX leading to authentication bypass (CVE-2018-19788)
A flaw was found in PolicyKit (aka polkit) 0.115 that allows a user with
a uid greater than
INT_MAX to successfully execute any systemctl command.
References:
https://gitlab.freedesktop.org/polkit/polkit/issues/74
https://nvd.nist.gov/vuln/detail/CVE-2018-19788
Patches:
https://gitlab.freedesktop.org/zbyszek/polkit/commit/fbaab32cb4ed9ed5f1e3eea6cd317d443aa427dc
https://gitlab.freedesktop.org/zbyszek/polkit/commit/7c8c3abdedbb991a69bc5f1ab0f96576958b55de
(from redmine: issue id 9756, created on 2018-12-12, closed on 2019-03-05)
- Relations:
- parent #9752 (closed)
- Changesets:
- Revision a0b66a14 by Natanael Copa on 2019-03-05T09:04:32Z:
main/polkit: security fix (CVE-2018-19788)
Fixes #9756