Pwnkit: Local Privilege Escalation in polkit’s pkexec (CVE-2021-4034)

Posted on 2022-01-25 by pappp

Article note: Group ownership of hardware assets wasn't modern enough or something, so we got polkit and it's constant weird state and js/xml config nightmare. ...and the parser that broke is pkexec's sloppy handling of argv.

Comments

This entry was posted in News. Bookmark the permalink.

Leave a Reply Cancel reply

Search for:
Web Presence
- Lemmy
- last.fm
- Linkedin
Page Navigation
- About Me
- Schedule
- News
Meta
November 2024

S M T W T F S

1 2

3 4 5 6 7 8 9

10 11 12 13 14 15 16

17 18 19 20 21 22 23

24 25 26 27 28 29 30

« Oct
Recent Posts
Random Quote

What if…
– your programming language required you to write useful docs,
– using those docs, it checked your program for mistakes,
– it even used the docs to speed up your program,
– this feature already exists!
And what if it was called static typing.

— David van Geest
Categories
- Announcements
- Computers
- DIY
- Electronics
- Entertainment
- FoodBlogging
- General
- Literature
- Meta
- Music
- Navel Gazing
- News
- Objects
- OldBlog
- School
License

Unless otherwise noted, this work is licensed under a Creative Commons Attribution-ShareAlike 3.0 United States License.

Pwnkit: Local Privilege Escalation in polkit’s pkexec (CVE-2021-4034)

Leave a Reply Cancel reply

Web Presence

Page Navigation

Meta

Recent Posts

Random Quote

Categories

License