Staging Environment: Content and features may be unstable or change without notice.
Search for packages
Package details: pkg:deb/debian/policykit-1@0.105-31%2Bdeb11u1
purl pkg:deb/debian/policykit-1@0.105-31%2Bdeb11u1
Next non-vulnerable version 127-3
Latest non-vulnerable version 127-3
Risk 4.0
Vulnerabilities affecting this package (4)
Vulnerability Summary Fixed by
VCID-5y4d-ph3y-5qgd
Aliases:
CVE-2025-7519
polkit: XML policy file with a large number of nested elements may lead to out-of-bounds write
127-2
Affected by 1 other vulnerability.
127-3
Affected by 0 other vulnerabilities.
VCID-eqar-k6xk-1ufh
Aliases:
CVE-2026-4897
polkit: Polkit: Denial of Service via unbounded input processing through standard input
122-3
Affected by 3 other vulnerabilities.
127-3
Affected by 0 other vulnerabilities.
VCID-f2ed-c3rs-yqgz
Aliases:
CVE-2021-4115
polkit: file descriptor leak allows an unprivileged user to cause a crash
122-3
Affected by 3 other vulnerabilities.
VCID-hxfb-cmwp-j7c4
Aliases:
CVE-2016-2568
polkit: Program run via pkexec as unprivileged user can escape to parent session via TIOCSTI ioctl
126-2
Affected by 2 other vulnerabilities.
Vulnerabilities fixed by this package (2)
Vulnerability Summary Aliases
VCID-mmjs-fy7f-fkbt A vulnerability in polkit could lead to local root privilege escalation. CVE-2021-3560
VCID-yee7-fp2m-r7eg A vulnerability in polkit could lead to local root privilege escalation. CVE-2021-4034

Date Actor Action Vulnerability Source VulnerableCode Version
2026-05-04T02:19:26.989149+00:00 Debian Oval Importer Affected by VCID-eqar-k6xk-1ufh https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.6.0
2026-05-04T02:19:20.415354+00:00 Debian Oval Importer Affected by VCID-f2ed-c3rs-yqgz https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.6.0
2026-05-04T00:17:37.934326+00:00 Debian Oval Importer Fixing VCID-mmjs-fy7f-fkbt https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.6.0
2026-05-03T18:25:58.167885+00:00 Debian Oval Importer Fixing VCID-yee7-fp2m-r7eg https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.6.0
2026-05-02T04:18:17.313199+00:00 Debian Importer Affected by VCID-eqar-k6xk-1ufh https://security-tracker.debian.org/tracker/data/json 38.6.0
2026-05-01T23:32:48.691555+00:00 Debian Importer Affected by VCID-f2ed-c3rs-yqgz https://security-tracker.debian.org/tracker/data/json 38.6.0
2026-05-01T22:50:30.297555+00:00 Debian Importer Affected by VCID-hxfb-cmwp-j7c4 https://security-tracker.debian.org/tracker/data/json 38.6.0
2026-05-01T21:56:16.281965+00:00 Debian Importer Affected by VCID-5y4d-ph3y-5qgd https://security-tracker.debian.org/tracker/data/json 38.6.0
2026-04-29T12:45:26.356052+00:00 Debian Importer Affected by VCID-5y4d-ph3y-5qgd https://security-tracker.debian.org/tracker/data/json 38.5.0
2026-04-16T13:06:26.665553+00:00 Debian Importer Affected by VCID-hxfb-cmwp-j7c4 https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T09:50:16.605452+00:00 Debian Importer Affected by VCID-f2ed-c3rs-yqgz https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T08:43:24.577509+00:00 Debian Importer Affected by VCID-5y4d-ph3y-5qgd https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-15T23:38:02.755623+00:00 Debian Oval Importer Fixing VCID-mmjs-fy7f-fkbt https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.4.0
2026-04-15T18:11:07.395576+00:00 Debian Oval Importer Fixing VCID-yee7-fp2m-r7eg https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.4.0
2026-04-13T09:00:47.922019+00:00 Debian Importer Affected by VCID-hxfb-cmwp-j7c4 https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-13T06:34:31.997736+00:00 Debian Importer Affected by VCID-f2ed-c3rs-yqgz https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-11T23:12:57.126166+00:00 Debian Oval Importer Fixing VCID-mmjs-fy7f-fkbt https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.3.0
2026-04-11T17:56:35.298154+00:00 Debian Oval Importer Fixing VCID-yee7-fp2m-r7eg https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.3.0
2026-04-11T17:51:39.802373+00:00 Debian Importer Affected by VCID-5y4d-ph3y-5qgd https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-08T22:46:33.345567+00:00 Debian Oval Importer Fixing VCID-mmjs-fy7f-fkbt https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.1.0
2026-04-08T19:59:43.917509+00:00 Debian Importer Affected by VCID-hxfb-cmwp-j7c4 https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-08T18:22:12.212892+00:00 Debian Importer Affected by VCID-f2ed-c3rs-yqgz https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-08T17:43:22.892928+00:00 Debian Oval Importer Fixing VCID-yee7-fp2m-r7eg https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.1.0
2026-04-04T16:19:52.062560+00:00 Debian Importer Affected by VCID-5y4d-ph3y-5qgd https://security-tracker.debian.org/tracker/data/json 38.1.0