LWN.net Logo

Weekly edition Kernel Security Distributions Contact Us Search
Archives Calendar Subscribe Write for LWN LWN.net FAQ Sponsors

ubuntu-system-service: authorization bypass
Package(s):ubuntu-system-service CVE #(s):CVE-2013-1062
Created:September 19, 2013 Updated:September 25, 2013
Description: From the Ubuntu advisory:

It was discovered that ubuntu-system-service was using polkit in an unsafe manner. A local attacker could possibly use this issue to bypass intended polkit authorizations.

Alerts:
Ubuntu USN-1962-1 2013-09-18
(Log in to post comments)

Copyright © 2013, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds