Staging Environment: Content and features may be unstable or change without notice.
Search for packages
Package details: pkg:deb/debian/policykit-1@122-3
purl pkg:deb/debian/policykit-1@122-3
Next non-vulnerable version 127-2
Latest non-vulnerable version 127-2
Risk 3.0
Vulnerabilities affecting this package (2)
Vulnerability Summary Fixed by
VCID-5y4d-ph3y-5qgd
Aliases:
CVE-2025-7519
polkit: XML policy file with a large number of nested elements may lead to out-of-bounds write
127-2
Affected by 0 other vulnerabilities.
VCID-hxfb-cmwp-j7c4
Aliases:
CVE-2016-2568
polkit: Program run via pkexec as unprivileged user can escape to parent session via TIOCSTI ioctl
126-2
Affected by 1 other vulnerability.
Vulnerabilities fixed by this package (1)
Vulnerability Summary Aliases
VCID-f2ed-c3rs-yqgz polkit: file descriptor leak allows an unprivileged user to cause a crash CVE-2021-4115

Date Actor Action Vulnerability Source VulnerableCode Version
2026-04-16T13:06:26.669455+00:00 Debian Importer Affected by VCID-hxfb-cmwp-j7c4 https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T09:50:16.609705+00:00 Debian Importer Fixing VCID-f2ed-c3rs-yqgz https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T08:43:24.581087+00:00 Debian Importer Affected by VCID-5y4d-ph3y-5qgd https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-13T09:00:47.925926+00:00 Debian Importer Affected by VCID-hxfb-cmwp-j7c4 https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-13T06:34:32.004489+00:00 Debian Importer Fixing VCID-f2ed-c3rs-yqgz https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-11T17:51:39.806295+00:00 Debian Importer Affected by VCID-5y4d-ph3y-5qgd https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-08T19:59:43.921840+00:00 Debian Importer Affected by VCID-hxfb-cmwp-j7c4 https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-08T18:22:12.219090+00:00 Debian Importer Fixing VCID-f2ed-c3rs-yqgz https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-04T16:19:52.069342+00:00 Debian Importer Affected by VCID-5y4d-ph3y-5qgd https://security-tracker.debian.org/tracker/data/json 38.1.0