2. PolicyKit に権限昇格の脆弱性が見つかりました。
A flaw was found in PolicyKit (aka polkit) 0.115 that allows a user
with a uid greater than INT_MAX to successfully execute any
systemctl command.
( https://nvd.nist.gov/vuln/detail/CVE-2018-19788 )
“unprivileged users with UID > INT_MAX can successfully
execute any systemctl command” 😱
( https://twitter.com/0xdea/status/1070308598146850818 )
こんな脆弱性が話題でした
3. PolicyKit に権限昇格の脆弱性が見つかりました。
A flaw was found in PolicyKit (aka polkit) 0.115 that allows a user
with a uid greater than INT_MAX to successfully execute any
systemctl command.
( https://nvd.nist.gov/vuln/detail/CVE-2018-19788 )
“unprivileged users with UID > INT_MAX can successfully
execute any systemctl command” 😱
( https://twitter.com/0xdea/status/1070308598146850818 )
こんな脆弱性が話題でした