VulnerableCode Package Details - pkg:deb/debian/policykit-1@126-2?distro=trixie

Search for packages

Vulnerability	Summary	Fixed by
VCID-5y4d-ph3y-5qgd Aliases: CVE-2025-7519	polkit: XML policy file with a large number of nested elements may lead to out-of-bounds write	127-1 Affected by 0 other vulnerabilities. 127-2 Affected by 0 other vulnerabilities.

Vulnerability

Summary

Fixed by

VCID-5y4d-ph3y-5qgd
Aliases:
CVE-2025-7519

polkit: XML policy file with a large number of nested elements may lead to out-of-bounds write

127-1
Affected by 0 other vulnerabilities.

127-2
Affected by 0 other vulnerabilities.

Vulnerability	Summary	Aliases
VCID-2uwh-8f3g-6kc4	Multiple vulnerabilities have been found in polkit, the worst of which could result in privilege escalation.	CVE-2018-19788
VCID-3h84-z3yw-uydr	Multiple vulnerabilities have been found in PolicyKit, the worst of which may allow a local attacker to gain root privileges.	CVE-2011-4945
VCID-66y9-wrsz-gud9	polkit: Temporary auth hijacking via PID reuse and non-atomic fork	CVE-2019-6133
VCID-6s5p-ucft-ukad	polkit: potential information disclosure vulnerability due to cookie counter wrapping	CVE-2015-4625
VCID-97e5-xezy-wbf6	A race condition in polkit could allow a local attacker to gain escalated privileges.	CVE-2013-4288
VCID-caq7-jc8m-z3ec	Multiple vulnerabilities have been found in PolicyKit, the worst of which may allow a local attacker to gain root privileges.	CVE-2010-0750
VCID-d7rm-by3r-v3h3	Multiple vulnerabilities have been found in polkit, the worst of which could result in privilege escalation.	CVE-2018-1116
VCID-dn8s-xk69-qugj	Multiple vulnerabilities have been found in PolicyKit, the worst of which may allow a local attacker to gain root privileges.	CVE-2011-1485
VCID-f2ed-c3rs-yqgz	polkit: file descriptor leak allows an unprivileged user to cause a crash	CVE-2021-4115
VCID-fqxp-t48y-1khf	polkit: crash authentication_agent_new with invalid object path in RegisterAuthenticationAgent	CVE-2015-3218
VCID-fwr3-kw1f-bbbp	polkit is vulnerable to local privilege escalation.	CVE-2015-3255
VCID-hxfb-cmwp-j7c4	polkit: Program run via pkexec as unprivileged user can escape to parent session via TIOCSTI ioctl	CVE-2016-2568
VCID-jzdp-p8dy-skga	PolicyKit: format string vulnerability	CVE-2008-1658
VCID-mmjs-fy7f-fkbt	A vulnerability in polkit could lead to local root privilege escalation.	CVE-2021-3560
VCID-yee7-fp2m-r7eg	A vulnerability in polkit could lead to local root privilege escalation.	CVE-2021-4034
VCID-zwvq-s21t-yfhh	polkit: Memory corruption via javascript rule evaluation	CVE-2015-3256

Vulnerability

Summary

Aliases

VCID-2uwh-8f3g-6kc4

Multiple vulnerabilities have been found in polkit, the worst of which could result in privilege escalation.

CVE-2018-19788

VCID-3h84-z3yw-uydr

Multiple vulnerabilities have been found in PolicyKit, the worst of which may allow a local attacker to gain root privileges.

CVE-2011-4945

VCID-66y9-wrsz-gud9

polkit: Temporary auth hijacking via PID reuse and non-atomic fork

CVE-2019-6133

VCID-6s5p-ucft-ukad

polkit: potential information disclosure vulnerability due to cookie counter wrapping

CVE-2015-4625

VCID-97e5-xezy-wbf6

A race condition in polkit could allow a local attacker to gain escalated privileges.

CVE-2013-4288

VCID-caq7-jc8m-z3ec

Multiple vulnerabilities have been found in PolicyKit, the worst of which may allow a local attacker to gain root privileges.

CVE-2010-0750

VCID-d7rm-by3r-v3h3

Multiple vulnerabilities have been found in polkit, the worst of which could result in privilege escalation.

CVE-2018-1116

VCID-dn8s-xk69-qugj

Multiple vulnerabilities have been found in PolicyKit, the worst of which may allow a local attacker to gain root privileges.

CVE-2011-1485

VCID-f2ed-c3rs-yqgz

polkit: file descriptor leak allows an unprivileged user to cause a crash

CVE-2021-4115

VCID-fqxp-t48y-1khf

polkit: crash authentication_agent_new with invalid object path in RegisterAuthenticationAgent

CVE-2015-3218

VCID-fwr3-kw1f-bbbp

polkit is vulnerable to local privilege escalation.

CVE-2015-3255

VCID-hxfb-cmwp-j7c4

polkit: Program run via pkexec as unprivileged user can escape to parent session via TIOCSTI ioctl

CVE-2016-2568

VCID-jzdp-p8dy-skga

PolicyKit: format string vulnerability

CVE-2008-1658

VCID-mmjs-fy7f-fkbt

A vulnerability in polkit could lead to local root privilege escalation.

CVE-2021-3560

VCID-yee7-fp2m-r7eg

A vulnerability in polkit could lead to local root privilege escalation.

CVE-2021-4034

VCID-zwvq-s21t-yfhh

polkit: Memory corruption via javascript rule evaluation

CVE-2015-3256

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2026-04-16T13:10:38.827114+00:00	Debian Importer	Fixing	VCID-dn8s-xk69-qugj	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-16T13:10:18.470221+00:00	Debian Importer	Fixing	VCID-yee7-fp2m-r7eg	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-16T13:03:17.142523+00:00	Debian Importer	Fixing	VCID-mmjs-fy7f-fkbt	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-16T12:34:40.596254+00:00	Debian Importer	Fixing	VCID-fwr3-kw1f-bbbp	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-16T12:17:51.842697+00:00	Debian Importer	Fixing	VCID-fqxp-t48y-1khf	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-16T11:21:13.681029+00:00	Debian Importer	Fixing	VCID-3h84-z3yw-uydr	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-16T11:05:09.216368+00:00	Debian Importer	Fixing	VCID-zwvq-s21t-yfhh	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-16T11:02:28.497733+00:00	Debian Importer	Fixing	VCID-2uwh-8f3g-6kc4	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-16T10:56:24.210110+00:00	Debian Importer	Fixing	VCID-97e5-xezy-wbf6	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-16T10:54:57.751888+00:00	Debian Importer	Fixing	VCID-caq7-jc8m-z3ec	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-16T10:07:33.995111+00:00	Debian Importer	Fixing	VCID-d7rm-by3r-v3h3	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-16T09:30:19.631741+00:00	Debian Importer	Fixing	VCID-66y9-wrsz-gud9	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-16T09:02:58.264133+00:00	Debian Importer	Fixing	VCID-6s5p-ucft-ukad	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-16T08:40:18.341181+00:00	Debian Importer	Fixing	VCID-jzdp-p8dy-skga	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-13T09:04:00.173711+00:00	Debian Importer	Fixing	VCID-dn8s-xk69-qugj	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-13T09:03:44.125668+00:00	Debian Importer	Fixing	VCID-yee7-fp2m-r7eg	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-13T08:58:28.129571+00:00	Debian Importer	Fixing	VCID-mmjs-fy7f-fkbt	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-13T08:36:50.431375+00:00	Debian Importer	Fixing	VCID-fwr3-kw1f-bbbp	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-13T08:24:37.843597+00:00	Debian Importer	Fixing	VCID-fqxp-t48y-1khf	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-13T07:43:47.133324+00:00	Debian Importer	Fixing	VCID-3h84-z3yw-uydr	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-13T07:31:41.554993+00:00	Debian Importer	Fixing	VCID-zwvq-s21t-yfhh	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-13T07:29:45.811832+00:00	Debian Importer	Fixing	VCID-2uwh-8f3g-6kc4	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-13T07:25:04.868011+00:00	Debian Importer	Fixing	VCID-97e5-xezy-wbf6	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-13T07:23:56.831782+00:00	Debian Importer	Fixing	VCID-caq7-jc8m-z3ec	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-13T06:48:02.211195+00:00	Debian Importer	Fixing	VCID-d7rm-by3r-v3h3	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-11T18:20:25.524577+00:00	Debian Importer	Fixing	VCID-66y9-wrsz-gud9	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-11T18:04:00.597664+00:00	Debian Importer	Fixing	VCID-6s5p-ucft-ukad	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-11T17:49:43.538462+00:00	Debian Importer	Fixing	VCID-jzdp-p8dy-skga	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-03T07:50:07.210816+00:00	Debian Importer	Affected by	VCID-5y4d-ph3y-5qgd	https://security-tracker.debian.org/tracker/data/json	38.1.0
2026-04-03T07:50:07.185889+00:00	Debian Importer	Fixing	VCID-f2ed-c3rs-yqgz	https://security-tracker.debian.org/tracker/data/json	38.1.0
2026-04-03T07:50:07.131484+00:00	Debian Importer	Fixing	VCID-yee7-fp2m-r7eg	https://security-tracker.debian.org/tracker/data/json	38.1.0
2026-04-03T07:50:07.090619+00:00	Debian Importer	Fixing	VCID-mmjs-fy7f-fkbt	https://security-tracker.debian.org/tracker/data/json	38.1.0
2026-04-03T07:50:07.041549+00:00	Debian Importer	Fixing	VCID-66y9-wrsz-gud9	https://security-tracker.debian.org/tracker/data/json	38.1.0
2026-04-03T07:50:06.992766+00:00	Debian Importer	Fixing	VCID-2uwh-8f3g-6kc4	https://security-tracker.debian.org/tracker/data/json	38.1.0
2026-04-03T07:50:06.944232+00:00	Debian Importer	Fixing	VCID-d7rm-by3r-v3h3	https://security-tracker.debian.org/tracker/data/json	38.1.0
2026-04-03T07:50:06.895577+00:00	Debian Importer	Fixing	VCID-hxfb-cmwp-j7c4	https://security-tracker.debian.org/tracker/data/json	38.1.0
2026-04-03T07:50:06.843377+00:00	Debian Importer	Fixing	VCID-6s5p-ucft-ukad	https://security-tracker.debian.org/tracker/data/json	38.1.0
2026-04-03T07:50:06.796885+00:00	Debian Importer	Fixing	VCID-zwvq-s21t-yfhh	https://security-tracker.debian.org/tracker/data/json	38.1.0
2026-04-03T07:50:06.757450+00:00	Debian Importer	Fixing	VCID-fwr3-kw1f-bbbp	https://security-tracker.debian.org/tracker/data/json	38.1.0
2026-04-03T07:50:06.708663+00:00	Debian Importer	Fixing	VCID-fqxp-t48y-1khf	https://security-tracker.debian.org/tracker/data/json	38.1.0
2026-04-03T07:50:06.659494+00:00	Debian Importer	Fixing	VCID-97e5-xezy-wbf6	https://security-tracker.debian.org/tracker/data/json	38.1.0
2026-04-03T07:50:06.610389+00:00	Debian Importer	Fixing	VCID-3h84-z3yw-uydr	https://security-tracker.debian.org/tracker/data/json	38.1.0
2026-04-03T07:50:06.569391+00:00	Debian Importer	Fixing	VCID-dn8s-xk69-qugj	https://security-tracker.debian.org/tracker/data/json	38.1.0
2026-04-03T07:50:06.519095+00:00	Debian Importer	Fixing	VCID-caq7-jc8m-z3ec	https://security-tracker.debian.org/tracker/data/json	38.1.0
2026-04-03T07:50:06.477582+00:00	Debian Importer	Fixing	VCID-jzdp-p8dy-skga	https://security-tracker.debian.org/tracker/data/json	38.1.0

2026-04-16T13:10:38.827114+00:00

Debian Importer

Fixing

VCID-dn8s-xk69-qugj

https://security-tracker.debian.org/tracker/data/json

38.4.0

2026-04-16T13:10:18.470221+00:00

Debian Importer

Fixing

VCID-yee7-fp2m-r7eg

https://security-tracker.debian.org/tracker/data/json

38.4.0

2026-04-16T13:03:17.142523+00:00

Debian Importer

Fixing

VCID-mmjs-fy7f-fkbt

https://security-tracker.debian.org/tracker/data/json

38.4.0

2026-04-16T12:34:40.596254+00:00

Debian Importer

Fixing

VCID-fwr3-kw1f-bbbp

https://security-tracker.debian.org/tracker/data/json

38.4.0

2026-04-16T12:17:51.842697+00:00

Debian Importer

Fixing

VCID-fqxp-t48y-1khf

https://security-tracker.debian.org/tracker/data/json

38.4.0

2026-04-16T11:21:13.681029+00:00

Debian Importer

Fixing

VCID-3h84-z3yw-uydr

https://security-tracker.debian.org/tracker/data/json

38.4.0

2026-04-16T11:05:09.216368+00:00

Debian Importer

Fixing

VCID-zwvq-s21t-yfhh

https://security-tracker.debian.org/tracker/data/json

38.4.0

2026-04-16T11:02:28.497733+00:00

Debian Importer

Fixing

VCID-2uwh-8f3g-6kc4

https://security-tracker.debian.org/tracker/data/json

38.4.0

2026-04-16T10:56:24.210110+00:00

Debian Importer

Fixing

VCID-97e5-xezy-wbf6

https://security-tracker.debian.org/tracker/data/json

38.4.0

2026-04-16T10:54:57.751888+00:00

Debian Importer

Fixing

VCID-caq7-jc8m-z3ec

https://security-tracker.debian.org/tracker/data/json

38.4.0

2026-04-16T10:07:33.995111+00:00

Debian Importer

Fixing

VCID-d7rm-by3r-v3h3

https://security-tracker.debian.org/tracker/data/json

38.4.0

2026-04-16T09:30:19.631741+00:00

Debian Importer

Fixing

VCID-66y9-wrsz-gud9

https://security-tracker.debian.org/tracker/data/json

38.4.0

2026-04-16T09:02:58.264133+00:00

Debian Importer

Fixing

VCID-6s5p-ucft-ukad

https://security-tracker.debian.org/tracker/data/json

38.4.0

2026-04-16T08:40:18.341181+00:00

Debian Importer

Fixing

VCID-jzdp-p8dy-skga

https://security-tracker.debian.org/tracker/data/json

38.4.0

2026-04-13T09:04:00.173711+00:00

Debian Importer

Fixing

VCID-dn8s-xk69-qugj

https://security-tracker.debian.org/tracker/data/json

38.3.0

2026-04-13T09:03:44.125668+00:00

Debian Importer

Fixing

VCID-yee7-fp2m-r7eg

https://security-tracker.debian.org/tracker/data/json

38.3.0

2026-04-13T08:58:28.129571+00:00

Debian Importer

Fixing

VCID-mmjs-fy7f-fkbt

https://security-tracker.debian.org/tracker/data/json

38.3.0

2026-04-13T08:36:50.431375+00:00

Debian Importer

Fixing

VCID-fwr3-kw1f-bbbp

https://security-tracker.debian.org/tracker/data/json

38.3.0

2026-04-13T08:24:37.843597+00:00

Debian Importer

Fixing

VCID-fqxp-t48y-1khf

https://security-tracker.debian.org/tracker/data/json

38.3.0

2026-04-13T07:43:47.133324+00:00

Debian Importer

Fixing

VCID-3h84-z3yw-uydr

https://security-tracker.debian.org/tracker/data/json

38.3.0

2026-04-13T07:31:41.554993+00:00

Debian Importer

Fixing

VCID-zwvq-s21t-yfhh

https://security-tracker.debian.org/tracker/data/json

38.3.0

2026-04-13T07:29:45.811832+00:00

Debian Importer

Fixing

VCID-2uwh-8f3g-6kc4

https://security-tracker.debian.org/tracker/data/json

38.3.0

2026-04-13T07:25:04.868011+00:00

Debian Importer

Fixing

VCID-97e5-xezy-wbf6

https://security-tracker.debian.org/tracker/data/json

38.3.0

2026-04-13T07:23:56.831782+00:00

Debian Importer

Fixing

VCID-caq7-jc8m-z3ec

https://security-tracker.debian.org/tracker/data/json

38.3.0

2026-04-13T06:48:02.211195+00:00

Debian Importer

Fixing

VCID-d7rm-by3r-v3h3

https://security-tracker.debian.org/tracker/data/json

38.3.0

2026-04-11T18:20:25.524577+00:00

Debian Importer

Fixing

VCID-66y9-wrsz-gud9

https://security-tracker.debian.org/tracker/data/json

38.3.0

2026-04-11T18:04:00.597664+00:00

Debian Importer

Fixing

VCID-6s5p-ucft-ukad

https://security-tracker.debian.org/tracker/data/json

38.3.0

2026-04-11T17:49:43.538462+00:00

Debian Importer

Fixing

VCID-jzdp-p8dy-skga

https://security-tracker.debian.org/tracker/data/json

38.3.0

2026-04-03T07:50:07.210816+00:00

Debian Importer

Affected by

VCID-5y4d-ph3y-5qgd

https://security-tracker.debian.org/tracker/data/json

38.1.0

2026-04-03T07:50:07.185889+00:00

Debian Importer

Fixing

VCID-f2ed-c3rs-yqgz

https://security-tracker.debian.org/tracker/data/json

38.1.0

2026-04-03T07:50:07.131484+00:00

Debian Importer

Fixing

VCID-yee7-fp2m-r7eg

https://security-tracker.debian.org/tracker/data/json

38.1.0

2026-04-03T07:50:07.090619+00:00

Debian Importer

Fixing

VCID-mmjs-fy7f-fkbt

https://security-tracker.debian.org/tracker/data/json

38.1.0

2026-04-03T07:50:07.041549+00:00

Debian Importer

Fixing

VCID-66y9-wrsz-gud9

https://security-tracker.debian.org/tracker/data/json

38.1.0

2026-04-03T07:50:06.992766+00:00

Debian Importer

Fixing

VCID-2uwh-8f3g-6kc4

https://security-tracker.debian.org/tracker/data/json

38.1.0

2026-04-03T07:50:06.944232+00:00

Debian Importer

Fixing

VCID-d7rm-by3r-v3h3

https://security-tracker.debian.org/tracker/data/json

38.1.0

2026-04-03T07:50:06.895577+00:00

Debian Importer

Fixing

VCID-hxfb-cmwp-j7c4

https://security-tracker.debian.org/tracker/data/json

38.1.0

2026-04-03T07:50:06.843377+00:00

Debian Importer

Fixing

VCID-6s5p-ucft-ukad

https://security-tracker.debian.org/tracker/data/json

38.1.0

2026-04-03T07:50:06.796885+00:00

Debian Importer

Fixing

VCID-zwvq-s21t-yfhh

https://security-tracker.debian.org/tracker/data/json

38.1.0

2026-04-03T07:50:06.757450+00:00

Debian Importer

Fixing

VCID-fwr3-kw1f-bbbp

https://security-tracker.debian.org/tracker/data/json

38.1.0

2026-04-03T07:50:06.708663+00:00

Debian Importer

Fixing

VCID-fqxp-t48y-1khf

https://security-tracker.debian.org/tracker/data/json

38.1.0

2026-04-03T07:50:06.659494+00:00

Debian Importer

Fixing

VCID-97e5-xezy-wbf6

https://security-tracker.debian.org/tracker/data/json

38.1.0

2026-04-03T07:50:06.610389+00:00

Debian Importer

Fixing

VCID-3h84-z3yw-uydr

https://security-tracker.debian.org/tracker/data/json

38.1.0

2026-04-03T07:50:06.569391+00:00

Debian Importer

Fixing

VCID-dn8s-xk69-qugj

https://security-tracker.debian.org/tracker/data/json

38.1.0

2026-04-03T07:50:06.519095+00:00

Debian Importer

Fixing

VCID-caq7-jc8m-z3ec

https://security-tracker.debian.org/tracker/data/json

38.1.0

2026-04-03T07:50:06.477582+00:00

Debian Importer

Fixing

VCID-jzdp-p8dy-skga

https://security-tracker.debian.org/tracker/data/json

38.1.0

Next non-vulnerable version	127-1
Latest non-vulnerable version	127-2
Risk	3.0