8 matches found
screen-resolution-extra security bypass vulnerability
screen-resolution-extra is a screen resolution extension used in GNOME Desktop. A security vulnerability exists in screen-resolution-mechanism in screen-resolution-extra version 0.17.2, which stems from the program's failure to properly use the PolicyKit D-Bus API.A local attacker can exploit thi...
CVE-2018-8885
screenresolution-mechanism in screen-resolution-extra 0.17.2 does not properly use the PolicyKit D-Bus API, which allows local users to bypass intended access restrictions by leveraging a race condition via a setuid or pkexec process that is mishandled in a PolicyKitService.checkpermission call...
CVE-2018-8885
CVE-2018-8885 affects the screen-resolution-extra package (version 0.17.2) on GNOME desktops. The root cause is improper use of the PolicyKit D-Bus API, allowing a local user to bypass access restrictions by racing a setuid/pkexec process through PolicyKitService._check_permission. Impact is loca...
Ubuntu: Security Advisory (USN-3607-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Ubuntu 14.04 LTS / 16.04 LTS : Screen Resolution Extra vulnerability (USN-3607-1)
The remote Ubuntu 14.04 LTS / 16.04 LTS host has a package installed that is affected by a vulnerability as referenced in the USN-3607-1 advisory. It was discovered that Screen Resolution Extra was using PolicyKit in an unsafe manner. A local attacker could potentially exploit this issue to bypas...
USN-3607-1: Screen Resolution Extra vulnerability
It was discovered that Screen Resolution Extra was using PolicyKit in an unsafe manner. A local attacker could potentially exploit this issue to bypass intended PolicyKit authorizations...
USN-3607-1 screen-resolution-extra vulnerability
It was discovered that Screen Resolution Extra was using PolicyKit in an unsafe manner. A local attacker could potentially exploit this issue to bypass intended PolicyKit authorizations...
CVE-2018-8885
screenresolution-mechanism in screen-resolution-extra 0.17.2 does not properly use the PolicyKit D-Bus API, which allows local users to bypass intended access restrictions by leveraging a race condition via a setuid or pkexec process that is mishandled in a PolicyKitService.checkpermission call...