Search for packages
| purl | pkg:deb/debian/policykit-1@0.105-31%2Bdeb11u1?distro=trixie |
| Next non-vulnerable version | 0.105-31.1 |
| Latest non-vulnerable version | 127-2 |
| Risk | 4.0 |
| Vulnerability | Summary | Fixed by |
|---|---|---|
|
VCID-5y4d-ph3y-5qgd
Aliases: CVE-2025-7519 |
polkit: XML policy file with a large number of nested elements may lead to out-of-bounds write |
Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. |
|
VCID-f2ed-c3rs-yqgz
Aliases: CVE-2021-4115 |
polkit: file descriptor leak allows an unprivileged user to cause a crash |
Affected by 0 other vulnerabilities. Affected by 2 other vulnerabilities. Affected by 1 other vulnerability. Affected by 0 other vulnerabilities. |
|
VCID-hxfb-cmwp-j7c4
Aliases: CVE-2016-2568 |
polkit: Program run via pkexec as unprivileged user can escape to parent session via TIOCSTI ioctl |
Affected by 0 other vulnerabilities. Affected by 1 other vulnerability. Affected by 0 other vulnerabilities. |
| Vulnerability | Summary | Aliases |
|---|---|---|
| VCID-2uwh-8f3g-6kc4 | Multiple vulnerabilities have been found in polkit, the worst of which could result in privilege escalation. |
CVE-2018-19788
|
| VCID-3h84-z3yw-uydr | Multiple vulnerabilities have been found in PolicyKit, the worst of which may allow a local attacker to gain root privileges. |
CVE-2011-4945
|
| VCID-66y9-wrsz-gud9 | polkit: Temporary auth hijacking via PID reuse and non-atomic fork |
CVE-2019-6133
|
| VCID-6s5p-ucft-ukad | polkit: potential information disclosure vulnerability due to cookie counter wrapping |
CVE-2015-4625
|
| VCID-97e5-xezy-wbf6 | A race condition in polkit could allow a local attacker to gain escalated privileges. |
CVE-2013-4288
|
| VCID-caq7-jc8m-z3ec | Multiple vulnerabilities have been found in PolicyKit, the worst of which may allow a local attacker to gain root privileges. |
CVE-2010-0750
|
| VCID-d7rm-by3r-v3h3 | Multiple vulnerabilities have been found in polkit, the worst of which could result in privilege escalation. |
CVE-2018-1116
|
| VCID-dn8s-xk69-qugj | Multiple vulnerabilities have been found in PolicyKit, the worst of which may allow a local attacker to gain root privileges. |
CVE-2011-1485
|
| VCID-fqxp-t48y-1khf | polkit: crash authentication_agent_new with invalid object path in RegisterAuthenticationAgent |
CVE-2015-3218
|
| VCID-fwr3-kw1f-bbbp | polkit is vulnerable to local privilege escalation. |
CVE-2015-3255
|
| VCID-jzdp-p8dy-skga | PolicyKit: format string vulnerability |
CVE-2008-1658
|
| VCID-mmjs-fy7f-fkbt | A vulnerability in polkit could lead to local root privilege escalation. |
CVE-2021-3560
|
| VCID-yee7-fp2m-r7eg | A vulnerability in polkit could lead to local root privilege escalation. |
CVE-2021-4034
|
| VCID-zwvq-s21t-yfhh | polkit: Memory corruption via javascript rule evaluation |
CVE-2015-3256
|