Ubuntu Update For Policykit-1 USN-1953-1 Network Vulnerability

Solution

Please Install the Updated Packages.

Insight

It was discovered that polkit didn't allow applications to use the pkcheck tool in a way which prevented a race condition in the UID lookup. A local attacker could use this flaw to possibly escalate privileges.

Affected

policykit-1 on Ubuntu 13.04 , Ubuntu 12.10 , Ubuntu 12.04 LTS , Ubuntu 10.04 LTS

References

https://lists.ubuntu.com/archives/ubuntu-security-announce/2013-September/002245.html

Updated on 2015-03-25

Severity

Classification

CVE CVE-2013-4288

CVSS	Base Score: 7.2 AV:L/AC:L/Au:N/C:C/I:C/A:C

Related Vulnerabilities

Ubuntu Update for exiv2 vulnerabilities USN-655-1
Ubuntu Update for bind9 USN-1910-1
Ubuntu Update for apt-listchanges vulnerability USN-572-1
Ubuntu Update for cups-filters USN-2210-1
Ubuntu Update for cupsys vulnerability USN-539-1

Ubuntu Update for policykit-1 USN-1953-1

Take action and discover your vulnerabilities