DSA-4428-1 systemd -- systemdID: oval:org.secpod.oval:def:603846 | Date: (C)2019-04-09 (M)2023-12-20 |
Class: PATCH | Family: unix |
Jann Horn discovered that the PAM module in systemd insecurely uses the environment and lacks seat verification permitting spoofing an active session to PolicyKit. A remote attacker with SSH access can take advantage of this issue to gain PolicyKit privileges that are normally only granted to clients in an active session on the local console.
Product: |
systemd |
libsystemd0 |
libnss-myhostname |
libudev1 |
libsystemd-dev |
libnss-systemd |
libpam-systemd |
libnss-mymachines |
libnss-resolve |
udev |
libudev-dev |