Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Integer overflow in the authentication_agent_new_cookie function in PolicyKit (aka polkit) before 0.113 allows local users to gain privileges by creating a large number of connections, which triggers the issuance of a duplicate cookie value.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Red Hat PolicyKit 整数溢出漏洞
Vulnerability Description
Red Hat PolicyKit(又名Polkit)是美国红帽(Red Hat)公司的一个用于在Unix兼容系统中对应用程序进行权限控制的工具。该工具为现代桌面提供了一个中央框架用于授权一般应用程序进行特权工作。 Red Hat PolicyKit 0.113之前版本的‘authentication_agent_new_cookie’函数中存在整数溢出漏洞。本地攻击者可通过创建大量连接利用该漏洞获取权限。
CVSS Information
N/A
Vulnerability Type
N/A