Wind River Support Network

HomeDefectsLIN10-4290

Fixed

LIN10-4290 : Security Advisory - polkit - CVE-2018-1116

Created: Jul 16, 2018 Updated: Dec 24, 2018

Resolved Date: Jul 18, 2018

Found In Version: 10.17.41.1

Fix Version: 10.17.41.10

Severity: Standard

Applicable for: Wind River Linux LTS 17

Component/s: Userspace

Description

A flaw was found in polkit before version 0.116. The implementation of the polkit_backend_interactive_authority_check_authorization function in polkitd allows to test for authentication and trigger authentication of unrelated processes owned by other users. This may result in a local DoS and information disclosure.

https://nvd.nist.gov/vuln/detail/CVE-2018-1116

Other Downloads

Wind River Linux LTS 10.17.41.10
Wind River Linux LTS 10.17.41.11
Wind River Linux LTS 10.17.41.12
Wind River Linux LTS 10.17.41.13
Wind River Linux LTS 10.17.41.14
Wind River Linux LTS 10.17.41.15
Wind River Linux LTS 10.17.41.16
Wind River Linux LTS 10.17.41.17
Wind River Linux LTS 10.17.41.18
Wind River Linux LTS 10.17.41.20
Wind River Linux LTS 10.17.41.21
Wind River Linux LTS 10.17.41.22
Wind River Linux LTS 10.17.41.23
Wind River Linux LTS 10.17.41.24
Wind River Linux LTS 10.17.41.25
Wind River Linux LTS 10.17.41.26
Wind River Linux LTS 10.17.41.27

CVEs

CVE-2018-1116