Vulnerability   
Search   
    Search 219043 CVE descriptions
and 99761 test descriptions,
access 10,000+ cross references.
Tests   CVE   All  

CVE ID:CVE-2019-6133
Description:In PolicyKit (aka polkit) 0.115, the "start time" protection mechanism can be bypassed because fork() is not atomic, and therefore authorization decisions are improperly cached. This is related to lack of uid checking in polkitbackend/polkitbackendinteractiveauthority.c.
Test IDs: 1.3.6.1.4.1.25623.1.0.891644   1.3.6.1.4.1.25623.1.0.843924   1.3.6.1.4.1.25623.1.0.843923   1.3.6.1.4.1.25623.1.0.883013   1.3.6.1.4.1.25623.1.0.843927   1.3.6.1.4.1.25623.1.0.843926   1.3.6.1.4.1.25623.1.0.883017   1.3.6.1.4.1.25623.1.0.843932   1.3.6.1.4.1.25623.1.0.843964   1.3.6.1.4.1.25623.1.0.891799   1.3.6.1.4.1.25623.1.0.852661   1.3.6.1.4.1.25623.1.1.2.2019.1101   1.3.6.1.4.1.25623.1.1.2.2019.1122   1.3.6.1.4.1.25623.1.1.2.2019.1070   1.3.6.1.4.1.25623.1.1.2.2019.1656   1.3.6.1.4.1.25623.1.1.4.2019.2035.1   1.3.6.1.4.1.25623.1.1.4.2019.2018.1  
Cross References: Common Vulnerability Exposure (CVE) ID: CVE-2019-6133
BugTraq ID: 106537
http://www.securityfocus.com/bid/106537
https://bugs.chromium.org/p/project-zero/issues/detail?id=1692
https://git.kernel.org/linus/7b55851367136b1efd84d98fea81ba57a98304cf
https://gitlab.freedesktop.org/polkit/polkit/commit/c898fdf4b1aafaa04f8ada9d73d77c8bb76e2f81
https://gitlab.freedesktop.org/polkit/polkit/merge_requests/19
https://lists.debian.org/debian-lts-announce/2019/01/msg00021.html
https://lists.debian.org/debian-lts-announce/2019/05/msg00041.html
https://lists.debian.org/debian-lts-announce/2019/05/msg00042.html
RedHat Security Advisories: RHSA-2019:0230
https://access.redhat.com/errata/RHSA-2019:0230
RedHat Security Advisories: RHSA-2019:0420
https://access.redhat.com/errata/RHSA-2019:0420
RedHat Security Advisories: RHSA-2019:0832
https://access.redhat.com/errata/RHSA-2019:0832
RedHat Security Advisories: RHSA-2019:2699
https://access.redhat.com/errata/RHSA-2019:2699
RedHat Security Advisories: RHSA-2019:2978
https://access.redhat.com/errata/RHSA-2019:2978
SuSE Security Announcement: openSUSE-SU-2019:1914 (Google Search)
http://lists.opensuse.org/opensuse-security-announce/2019-08/msg00049.html
https://usn.ubuntu.com/3901-1/
https://usn.ubuntu.com/3901-2/
https://usn.ubuntu.com/3903-1/
https://usn.ubuntu.com/3903-2/
https://usn.ubuntu.com/3908-1/
https://usn.ubuntu.com/3908-2/
https://usn.ubuntu.com/3910-1/
https://usn.ubuntu.com/3910-2/
https://usn.ubuntu.com/3934-1/
https://usn.ubuntu.com/3934-2/




© 1998-2025 E-Soft Inc. All rights reserved.