Integer overflow in the authentication_agent_new_cookie function in PolicyKit (aka polkit) prior to 0.113 allows local users to gain privileges by creating a large number of connections, which triggers the issuance of a duplicate cookie value.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
fedoraproject fedora 21 |
||
opensuse opensuse 13.2 |
||
fedoraproject fedora 22 |
||
opensuse opensuse 13.1 |
||
polkit project polkit |