Home CVE Database CVE-2018-1116

CVE-2018-1116

Description

A flaw was found in polkit before version 0.116. The implementation of the polkit_backend_interactive_authority_check_authorization function in polkitd allows to test for authentication and trigger authentication of unrelated processes owned by other users. This may result in a local DoS and information disclosure.

Priority: LOW
CVSS v3: 7.1
Publish Date: Jul 10, 2018
Related ID: --
CVSS v2: HIGH
Modified Date: Jul 10, 2018

Find out more about CVE-2018-1116 from the MITRE-CVE dictionary and NIST NVD


Products Affected

Login may be required to access defects or downloads.

Related Products

Product Name Status Defect Fixed Downloads
Linux 7 SCP Not Vulnerable -- -- --
Linux 7 CGP Not Vulnerable -- -- --

Comments

polkit

Live chat
Online