3 matches found
CVE-2026-25710
The new upstream added a privileged D-Bus helper called plasmaloginauthhelper, which suffers from multiple issues, e.g.aA compromised plasmalogin service account can chown arbitrary files in the system...
Back In Time competitive conditions loophole
Back In Time aka backintime is a suite of Linux backup tools. A competitive condition vulnerability exists in the 'checkPolkitPrivilege' function of the serviceHelper.py file in Back In Time 1.1.18 and earlier versions. An attacker can exploit this vulnerability to replace the user's request...
DEBIAN-CVE-2017-7572
The checkPolkitPrivilege function in serviceHelper.py in Back In Time aka backintime 1.1.18 and earlier uses a deprecated polkit authorization method unix-process that is subject to a race condition time of check, time of use. With this authorization method, the owner of a process requesting a...