(RHSA-2019:3232) Moderate: polkit security update

2019-10-2912:01:09

access.redhat.com

8.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

9 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:S/C:C/I:C/A:C

0.007 Low

EPSS

Percentile

80.6%

JSON

The polkit packages provide a component for controlling system-wide privileges. This component provides a uniform and organized way for non-privileged processes to communicate with privileged ones.

Security Fix(es):

polkit: Improper handling of user with uid > INT_MAX leading to authentication bypass (CVE-2018-19788)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

OSVersionArchitecturePackageVersionFilename
RedHat7x86_64polkit-devel< 0.112-18.el7_6.2polkit-devel-0.112-18.el7_6.2.x86_64.rpm
RedHat7ppc64lepolkit< 0.112-18.el7_6.2polkit-0.112-18.el7_6.2.ppc64le.rpm
RedHat7x86_64polkit-debuginfo< 0.112-18.el7_6.2polkit-debuginfo-0.112-18.el7_6.2.x86_64.rpm
RedHat7ppc64polkit< 0.112-18.el7_6.2polkit-0.112-18.el7_6.2.ppc64.rpm
RedHat7ppcpolkit-debuginfo< 0.112-18.el7_6.2polkit-debuginfo-0.112-18.el7_6.2.ppc.rpm
RedHat7aarch64polkit-debuginfo< 0.112-18.el7_6.2polkit-debuginfo-0.112-18.el7_6.2.aarch64.rpm
RedHat7ppcpolkit-devel< 0.112-18.el7_6.2polkit-devel-0.112-18.el7_6.2.ppc.rpm
RedHat7ppc64polkit-debuginfo< 0.112-18.el7_6.2polkit-debuginfo-0.112-18.el7_6.2.ppc64.rpm
RedHat7s390xpolkit< 0.112-18.el7_6.2polkit-0.112-18.el7_6.2.s390x.rpm
RedHat7s390polkit-debuginfo< 0.112-18.el7_6.2polkit-debuginfo-0.112-18.el7_6.2.s390.rpm

OS	Version	Architecture	Package	Version	Filename
RedHat	7	x86_64	polkit-devel	< 0.112-18.el7_6.2	polkit-devel-0.112-18.el7_6.2.x86_64.rpm
RedHat	7	ppc64le	polkit	< 0.112-18.el7_6.2	polkit-0.112-18.el7_6.2.ppc64le.rpm
RedHat	7	x86_64	polkit-debuginfo	< 0.112-18.el7_6.2	polkit-debuginfo-0.112-18.el7_6.2.x86_64.rpm
RedHat	7	ppc64	polkit	< 0.112-18.el7_6.2	polkit-0.112-18.el7_6.2.ppc64.rpm
RedHat	7	ppc	polkit-debuginfo	< 0.112-18.el7_6.2	polkit-debuginfo-0.112-18.el7_6.2.ppc.rpm
RedHat	7	aarch64	polkit-debuginfo	< 0.112-18.el7_6.2	polkit-debuginfo-0.112-18.el7_6.2.aarch64.rpm
RedHat	7	ppc	polkit-devel	< 0.112-18.el7_6.2	polkit-devel-0.112-18.el7_6.2.ppc.rpm
RedHat	7	ppc64	polkit-debuginfo	< 0.112-18.el7_6.2	polkit-debuginfo-0.112-18.el7_6.2.ppc64.rpm
RedHat	7	s390x	polkit	< 0.112-18.el7_6.2	polkit-0.112-18.el7_6.2.s390x.rpm
RedHat	7	s390	polkit-debuginfo	< 0.112-18.el7_6.2	polkit-debuginfo-0.112-18.el7_6.2.s390.rpm