Opened 6 months ago

Closed 5 months ago

#16151 closed enhancement (fixed)

add polkit security patch for CVE-2021-4115

Reported by: Xi Ruoyao Owned by: Douglas R. Reno
Priority: elevated Milestone: 11.2
Component: BOOK Version: git
Severity: normal Keywords:


Change History (5)

comment:1 by Xi Ruoyao, 6 months ago

I'd mark this a low severity vulnerability. The worst thing can be caused is a crash of polkitd. And when it's needed next time it will be activated by d-bus anyway (at least on systemd revision).

comment:2 by Douglas R. Reno, 5 months ago

Owner: changed from blfs-book to Douglas R. Reno
Status: newassigned

comment:3 by Douglas R. Reno, 5 months ago

The existing security patch has been rediffed and will be named 'polkit-0.120-security_fixes-1.patch' since it has multiple fixes in it now instead of just one fix.

comment:4 by Douglas R. Reno, 5 months ago

Patch added to the repository

comment:5 by Douglas R. Reno, 5 months ago

Resolution: fixed
Status: assignedclosed
Note: See TracTickets for help on using tickets.