Lucene search
PRIOn knowledge basePRION:CVE-2021-4115HistoryFeb 21, 2022 - 10:15 p.m.
Design/Logic Flaw
2022-02-2122:15:00
PRIOn knowledge base
www.prio-n.com
9
There is a flaw in polkit which can allow an unprivileged user to cause polkit to crash, due to process file descriptor exhaustion. The highest threat from this vulnerability is to availability. NOTE: Polkit process outage duration is tied to the failing process being reaped and a new one being spawned
| CPE | Name | Operator | Version |
|---|---|---|---|
| ubuntu_linux | eq | 20.04 | |
| ubuntu_linux | eq | 21.10 | |
| debian_linux | eq | 11.0 | |
| fedora | eq | 34 | |
| fedora | eq | 35 | |
| zfs_storage_appliance_kit | eq | 8.8 | |
| polkit | eq | 0.117 | |
| enterprise_linux | eq | 8.0 |
References
packetstormsecurity.com/files/172849/polkit-File-Descriptor-Exhaustion.html
access.redhat.com/security/cve/cve-2021-4115
gitlab.com/redhat/centos-stream/rpms/polkit/-/merge_requests/6/diffs?commit_id=bf900df04dc390d389e59aa10942b0f2b15c531e
gitlab.freedesktop.org/polkit/polkit/-/issues/141
lists.fedoraproject.org/archives/list/[email protected]/message/VGKWCBS6IDZYYDYM2WIWJM5BL7QQTWPF/
www.oracle.com/security-alerts/cpujul2022.html
Related
fedora
fedora
[SECURITY] Fedora 35 Update: polkit-0.120-1.fc35.2
2022-02-19 01:32:59
[SECURITY] Fedora 34 Update: polkit-0.117-3.fc34.3
2022-03-03 15:50:59
cve
cve
CVE-2021-4115
2022-02-21 22:15:07
slackware
slackware
[slackware-security] polkit
2022-03-12 21:04:57
redhat
redhat
(RHSA-2022:1546) Moderate: polkit security update
2022-04-26 13:49:20
nessus
nessus
EulerOS Virtualization 2.9.1 : polkit (EulerOS-SA-2022-2187)
2022-07-29 00:00:00
SUSE SLED12 / SLES12 Security Update : polkit (SUSE-SU-2022:0524-1)
2022-02-22 00:00:00
Slackware Linux 15.0 / current polkit Vulnerability (SSA:2022-071-01)
2022-03-13 00:00:00
openvas
openvas
Huawei EulerOS: Security Advisory for polkit (EulerOS-SA-2022-2187)
2022-08-01 00:00:00
Huawei EulerOS: Security Advisory for polkit (EulerOS-SA-2022-1813)
2022-06-07 00:00:00
Huawei EulerOS: Security Advisory for polkit (EulerOS-SA-2022-1874)
2022-06-16 00:00:00
broadcom
broadcom
Flaw in polkit
2022-07-29 00:00:00
Flaw in polkit
2022-07-29 00:00:00
suse
suse
Security update for polkit (moderate)
2022-02-21 00:00:00
osv
osv
Moderate: polkit security update
2022-04-26 13:49:20
Moderate: polkit security update
2022-04-26 13:49:20
CVE-2021-4115
2022-02-21 22:15:07
ubuntucve
ubuntucve
CVE-2021-4115
2022-02-14 00:00:00
debiancve
debiancve
CVE-2021-4115
2022-02-21 22:15:07
ubuntu
ubuntu
PolicyKit vulnerability
2022-02-28 00:00:00
redos
redos
ROS-20220318-03
2022-03-18 00:00:00
cvelist
cvelist
CVE-2021-4115
2022-02-21 00:00:00
veracode
veracode
Denial Of Service (DoS)
2022-02-21 15:47:54
nvd
nvd
CVE-2021-4115
2022-02-21 22:15:07
redhatcve
redhatcve
CVE-2021-4115
2022-02-14 13:37:16
mageia
mageia
Updated polkit packages fix security vulnerability
2022-02-22 23:15:16
almalinux
almalinux
Moderate: polkit security update
2022-04-26 13:49:20
oraclelinux
oraclelinux
polkit security update
2022-04-27 00:00:00
rocky
rocky
polkit security update
2022-04-26 13:49:20
altlinux
altlinux
Security fix for the ALT Linux 10 package polkit version 0.120-alt1.qa2
2022-05-06 00:00:00
archlinux
archlinux
[ASA-202204-2] polkit: multiple issues
2022-04-04 00:00:00
photon
photon
Important Photon OS Security Update - PHSA-2022-0470
2022-02-07 00:00:00
Important Photon OS Security Update - PHSA-2022-0362
2022-02-07 00:00:00
Important Photon OS Security Update - PHSA-2022-0154
2022-02-07 00:00:00
oracle
oracle
Oracle Critical Patch Update Advisory - July 2022
2022-07-19 00:00:00
avleonov
avleonov