Lucene search

K
osvGoogleOSV:RLSA-2022:1546
HistoryApr 26, 2022 - 1:49 p.m.

Moderate: polkit security update

2022-04-2613:49:20
Google
osv.dev
15
polkit
security
update
file descriptor
cve-2021-4115
non-privileged processes

AI Score

5.5

Confidence

High

EPSS

0.001

Percentile

43.4%

The polkit packages provide a component for controlling system-wide privileges. This component provides a uniform and organized way for non-privileged processes to communicate with privileged ones.

Security Fix(es):

  • polkit: file descriptor leak allows an unprivileged user to cause a crash (CVE-2021-4115)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.