Major Linux PolicyKit security vulnerability uncovered: Pwnkit
external-link
fedilink
7
Major Linux PolicyKit security vulnerability uncovered: Pwnkit
fedilink
Major Linux PolicyKit security vulnerability uncovered: Pwnkit | ZDNet
www.zdnet.com
external-link
A serious memory corruption vulnerability in polkit (formerly PolicyKit) has finally been discovered after 12+ years. This program is found in essentially all modern Linux distributions.

A serious memory corruption vulnerability in polkit (formerly PolicyKit) has finally been discovered after 12+ years. This program is found in essentially all modern Linux distributions.

The most likely attack scenario is from an internal threat where a malicious user can escalate from no privileges whatsoever to full root privileges. From an external threat perspective, if an attacker has been able to gain foothold on a system via another vulnerability or a password breach, that attacker can then escalate to full root privileges through this vulnerability.

@Thann@lemmy.ml
link
fedilink
43Y
@brombek@lemmy.ml
link
fedilink
33Y

So ‘pkexec’ is basically ‘sudo’ but instead of depending on PAM it uses polikit for authentication and authorization. How many ‘sudo’ programs do we need in one Linux system? :D

@a_Ha@lemmy.ml
link
fedilink
03Y

“… We discovered a Local Privilege Escalation (from any user to root) in polkit’s pkexec, a SUID-root program that is installed by default on every major Linux distribution …”

Usable to crack Android phones ?
Only local, no risks from outside ?

CHEF-KOCH
creator
link
fedilink
2
edit-2
3Y
  • Most popular Linux distros patched it already.
  • Does not work on Android. Or there is no PoC nor exploit.
  • You need to gain access with another vulnerability in the system first to execute this, however, once you gain that access it is 100 percent working.

The attack is highly efficient but entirely relies on the fact you need to get a foothold first on the system first.

I updated the OP with more infos.

    Subscribe

    From Wikipedia, the free encyclopedia

    Linux is a family of open source Unix-like operating systems based on the Linux kernel, an operating system kernel first released on September 17, 1991 by Linus Torvalds. Linux is typically packaged in a Linux distribution (or distro for short).

    Distributions include the Linux kernel and supporting system software and libraries, many of which are provided by the GNU Project. Many Linux distributions use the word “Linux” in their name, but the Free Software Foundation uses the name GNU/Linux to emphasize the importance of GNU software, causing some controversy.

    Rules

    • Posts must be relevant to operating systems running the Linux kernel. GNU/Linux or otherwise.
    • No misinformation
    • No NSFW content
    • No hate speech, bigotry, etc

    Related Communities

    Community icon by Alpár-Etele Méder, licensed under CC BY 3.0

    • 0 users online
    • 5 users / day
    • 20 users / week
    • 27 users / month
    • 16 users / 6 months
    • 20 subscribers
    • 684 Posts
    • 1.7K Comments
    • Modlog