CVE-2013-4288

Common Vulnerabilities and Exposures

[Previous] [Index] [Next]

Upstream information

CVE-2013-4288 at MITRE

Description

Race condition in PolicyKit (aka polkit) allows local users to bypass intended PolicyKit restrictions and gain privileges by starting a setuid or pkexec process before the authorization check is performed, related to (1) the polkit_unix_process_new API function, (2) the dbus API, or (3) the --process (unix-process) option for authorization to pkcheck.

NVD CVSS v2 Base Score: 7.2 (AV:L/AC:L/Au:N/C:C/I:C/A:C)

SUSE information

SUSE Bugzilla entries: 835827, 836931, 836932, 836937, 836939, 844967, 852368, 854144, 864716

SUSE Security Advisories:

List of released packages

Product(s) Fixed package version(s) References
openSUSE 12.3
  • hplip >= 3.12.11-2.5.1
  • hplip-debuginfo >= 3.12.11-2.5.1
  • hplip-debugsource >= 3.12.11-2.5.1
  • hplip-hpijs >= 3.12.11-2.5.1
  • hplip-hpijs-debuginfo >= 3.12.11-2.5.1
  • hplip-sane >= 3.12.11-2.5.1
  • hplip-sane-debuginfo >= 3.12.11-2.5.1
  • libgudev-1_0-0 >= 195-13.45.1
  • libgudev-1_0-0-32bit >= 195-13.45.1
  • libgudev-1_0-0-debuginfo >= 195-13.45.1
  • libgudev-1_0-0-debuginfo-32bit >= 195-13.45.1
  • libgudev-1_0-devel >= 195-13.45.1
  • libudev-devel >= 195-13.45.1
  • libudev-mini-devel >= 195-13.45.1
  • libudev-mini1 >= 195-13.45.1
  • libudev-mini1-debuginfo >= 195-13.45.1
  • libudev1 >= 195-13.45.1
  • libudev1-32bit >= 195-13.45.1
  • libudev1-debuginfo >= 195-13.45.1
  • libudev1-debuginfo-32bit >= 195-13.45.1
  • systemd >= 195-13.45.1
  • systemd-32bit >= 195-13.45.1
  • systemd-analyze >= 195-13.45.1
  • systemd-debuginfo >= 195-13.45.1
  • systemd-debuginfo-32bit >= 195-13.45.1
  • systemd-debugsource >= 195-13.45.1
  • systemd-devel >= 195-13.45.1
  • systemd-logger >= 195-13.45.1
  • systemd-mini >= 195-13.45.1
  • systemd-mini-analyze >= 195-13.45.1
  • systemd-mini-debuginfo >= 195-13.45.1
  • systemd-mini-debugsource >= 195-13.45.1
  • systemd-mini-devel >= 195-13.45.1
  • systemd-mini-sysvinit >= 195-13.45.1
  • systemd-sysvinit >= 195-13.45.1
  • typelib-1_0-GUdev-1_0 >= 195-13.45.1
  • udev >= 195-13.45.1
  • udev-debuginfo >= 195-13.45.1
  • udev-mini >= 195-13.45.1
  • udev-mini-debuginfo >= 195-13.45.1
Patchnames:
openSUSE-2013-737
openSUSE-2013-812
openSUSE Evergreen 11.4
  • hplip >= 3.11.5-1.15.1
  • hplip-debuginfo >= 3.11.5-1.15.1
  • hplip-debugsource >= 3.11.5-1.15.1
  • hplip-hpijs >= 3.11.5-1.15.1
  • hplip-hpijs-debuginfo >= 3.11.5-1.15.1
Patchnames:
2013-154