CVE-2019-6133
Description
In PolicyKit (aka polkit) 0.115, the start time protection mechanism can be bypassed because fork() is not atomic, and therefore authorization decisions are improperly cached. This is related to lack of uid checking in polkitbackend/polkitbackendinteractiveauthority.c.
Risk Information
Base Score
6.7
MODERATE
Vector
CVSS:3.0/AV:L/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:H
EPSS Score
Exploitation Probability
0.025
Associated Vulnerability
| Vulnerability | OS Platform |
|---|---|
| Linux kernel for Microsoft Azure Cloud systems (USN-3878-2) linux-image-azure_4.18.0.1013.14_amd64.deb | Linux |
| Linux kernel (USN-3901-1) linux-image-gcp_4.15.0.1028.30_amd64.deb | Linux |
| Linux kernel (USN-3901-1) linux-image-gke_4.15.0.1028.30_amd64.deb | Linux |
| Linux kernel (USN-3901-1) linux-image-kvm_4.15.0.1030.30_amd64.deb | Linux |
| Linux kernel (USN-3901-1) linux-image-oem_4.15.0.1034.39_amd64.deb | Linux |
| Linux kernel (USN-3901-1) linux-image-oracle_4.15.0.1009.12_amd64.deb | Linux |
| Linux kernel (USN-3901-1) linux-image-generic_4.15.0.46.48_i386.deb | Linux |
| Linux kernel (USN-3901-1) linux-image-generic_4.15.0.46.48_amd64.deb | Linux |
| Linux kernel (USN-3901-1) linux-image-lowlatency_4.15.0.46.48_i386.deb | Linux |
| Linux kernel (USN-3901-1) linux-image-lowlatency_4.15.0.46.48_amd64.deb | Linux |
| Linux kernel (USN-3901-1) linux-image-4.15.0-1028-gcp_4.15.0-1028.29_amd64.deb | Linux |
| Linux kernel (USN-3901-1) linux-image-4.15.0-1030-kvm_4.15.0-1030.30_amd64.deb | Linux |
| Linux kernel (USN-3901-1) linux-image-4.15.0-1033-aws_4.15.0-1033.35_amd64.deb | Linux |
| Linux kernel (USN-3901-1) linux-image-4.15.0-1034-oem_4.15.0-1034.39_amd64.deb | Linux |
| Linux kernel (USN-3901-1) linux-image-4.15.0-46-generic_4.15.0-46.49_i386.deb | Linux |
| Linux kernel (USN-3901-1) linux-image-4.15.0-46-generic_4.15.0-46.49_amd64.deb | Linux |
| Linux kernel (USN-3901-1) linux-image-4.15.0-1009-oracle_4.15.0-1009.11_amd64.deb | Linux |
| Linux kernel (USN-3901-1) linux-image-4.15.0-46-lowlatency_4.15.0-46.49_i386.deb | Linux |
| Linux kernel (USN-3901-1) linux-image-4.15.0-46-lowlatency_4.15.0-46.49_amd64.deb | Linux |
| Linux kernel for Amazon Web Services (AWS-HWE) systems (USN-3901-2) linux-image-gcp_4.15.0.1028.42_amd64.deb | Linux |
| Linux kernel for Amazon Web Services (AWS-HWE) systems (USN-3901-2) linux-image-gke_4.15.0.1028.42_amd64.deb | Linux |
| Linux kernel for Amazon Web Services (AWS-HWE) systems (USN-3901-2) linux-image-oem_4.15.0.46.67_amd64.deb | Linux |
| Linux kernel for Amazon Web Services (AWS-HWE) systems (USN-3901-2) linux-image-azure_4.15.0.1040.27_amd64.deb | Linux |
| Linux kernel for Amazon Web Services (AWS-HWE) systems (USN-3901-2) linux-image-azure_4.15.0.1040.44_amd64.deb | Linux |
| Linux kernel for Amazon Web Services (AWS-HWE) systems (USN-3901-2) linux-image-oracle_4.15.0.1009.3_amd64.deb | Linux |
| Linux kernel for Amazon Web Services (AWS-HWE) systems (USN-3901-2) linux-image-aws-hwe_4.15.0.1033.34_amd64.deb | Linux |
| Linux kernel for Amazon Web Services (AWS-HWE) systems (USN-3901-2) linux-image-4.15.0-1028-gcp_4.15.0-1028.29~16.04.1_amd64.deb | Linux |
| Linux kernel for Amazon Web Services (AWS-HWE) systems (USN-3901-2) linux-image-4.15.0-1033-aws_4.15.0-1033.35~16.04.1_amd64.deb | Linux |
| Linux kernel for Amazon Web Services (AWS-HWE) systems (USN-3901-2) linux-image-4.15.0-1040-azure_4.15.0-1040.44_amd64.deb | Linux |
| Linux kernel for Amazon Web Services (AWS-HWE) systems (USN-3901-2) linux-image-4.15.0-1040-azure_4.15.0-1040.44~14.04.1_amd64.deb | Linux |
| Linux kernel for Amazon Web Services (AWS-HWE) systems (USN-3901-2) linux-image-4.15.0-46-generic_4.15.0-46.49~16.04.1_i386.deb | Linux |
| Linux kernel for Amazon Web Services (AWS-HWE) systems (USN-3901-2) linux-image-4.15.0-46-generic_4.15.0-46.49~16.04.1_amd64.deb | Linux |
| Linux kernel for Amazon Web Services (AWS-HWE) systems (USN-3901-2) linux-image-generic-hwe-16.04_4.15.0.46.67_i386.deb | Linux |
| Linux kernel for Amazon Web Services (AWS-HWE) systems (USN-3901-2) linux-image-generic-hwe-16.04_4.15.0.46.67_amd64.deb | Linux |
| Linux kernel for Amazon Web Services (AWS-HWE) systems (USN-3901-2) linux-image-4.15.0-1009-oracle_4.15.0-1009.11~16.04.1_amd64.deb | Linux |
| Linux kernel for Amazon Web Services (AWS-HWE) systems (USN-3901-2) linux-image-4.15.0-46-lowlatency_4.15.0-46.49~16.04.1_i386.deb | Linux |
| Linux kernel for Amazon Web Services (AWS-HWE) systems (USN-3901-2) linux-image-4.15.0-46-lowlatency_4.15.0-46.49~16.04.1_amd64.deb | Linux |
| Linux kernel for Amazon Web Services (AWS-HWE) systems (USN-3901-2) linux-image-lowlatency-hwe-16.04_4.15.0.46.67_i386.deb | Linux |
| Linux kernel for Amazon Web Services (AWS-HWE) systems (USN-3901-2) linux-image-lowlatency-hwe-16.04_4.15.0.46.67_amd64.deb | Linux |
| Linux kernel (USN-3903-1) linux-image-gcp_4.18.0.1007.7_amd64.deb | Linux |
| Linux kernel (USN-3903-1) linux-image-gke_4.18.0.1007.7_amd64.deb | Linux |
| Linux kernel (USN-3903-1) linux-image-kvm_4.18.0.1008.8_amd64.deb | Linux |
| Linux kernel (USN-3903-1) linux-image-azure_4.18.0.1013.14_amd64.deb | Linux |
| Linux kernel (USN-3903-1) linux-image-generic_4.18.0.16.17_i386.deb | Linux |
| Linux kernel (USN-3903-1) linux-image-generic_4.18.0.16.17_amd64.deb | Linux |
| Linux kernel (USN-3903-1) linux-image-lowlatency_4.18.0.16.17_i386.deb | Linux |
| Linux kernel (USN-3903-1) linux-image-lowlatency_4.18.0.16.17_amd64.deb | Linux |
| Linux kernel (USN-3903-1) linux-image-4.18.0-1007-gcp_4.18.0-1007.8_amd64.deb | Linux |
| Linux kernel (USN-3903-1) linux-image-4.18.0-1008-kvm_4.18.0-1008.8_amd64.deb | Linux |
| Linux kernel (USN-3903-1) linux-image-4.18.0-1013-azure_4.18.0-1013.13_amd64.deb | Linux |
| Linux kernel (USN-3903-1) linux-image-4.18.0-16-generic_4.18.0-16.17_i386.deb | Linux |
| Linux kernel (USN-3903-1) linux-image-4.18.0-16-generic_4.18.0-16.17_amd64.deb | Linux |
| Linux kernel (USN-3903-1) linux-image-4.18.0-16-lowlatency_4.18.0-16.17_i386.deb | Linux |
| Linux kernel (USN-3903-1) linux-image-4.18.0-16-lowlatency_4.18.0-16.17_amd64.deb | Linux |
| Linux kernel for Microsoft Azure Cloud systems (USN-3903-2) linux-image-azure_4.18.0.1013.12_amd64.deb | Linux |
| Linux kernel for Microsoft Azure Cloud systems (USN-3903-2) linux-image-4.18.0-1013-azure_4.18.0-1013.13~18.04.1_amd64.deb | Linux |
| Linux kernel for Microsoft Azure Cloud systems (USN-3903-2) linux-image-4.18.0-16-generic_4.18.0-16.17~18.04.1_i386.deb | Linux |
| Linux kernel for Microsoft Azure Cloud systems (USN-3903-2) linux-image-4.18.0-16-generic_4.18.0-16.17~18.04.1_amd64.deb | Linux |
| Linux kernel for Microsoft Azure Cloud systems (USN-3903-2) linux-image-generic-hwe-18.04_4.18.0.16.66_i386.deb | Linux |
| Linux kernel for Microsoft Azure Cloud systems (USN-3903-2) linux-image-generic-hwe-18.04_4.18.0.16.66_amd64.deb | Linux |
| Linux kernel for Microsoft Azure Cloud systems (USN-3903-2) linux-image-4.18.0-16-lowlatency_4.18.0-16.17~18.04.1_i386.deb | Linux |
| Linux kernel for Microsoft Azure Cloud systems (USN-3903-2) linux-image-4.18.0-16-lowlatency_4.18.0-16.17~18.04.1_amd64.deb | Linux |
| Linux kernel for Microsoft Azure Cloud systems (USN-3903-2) linux-image-lowlatency-hwe-18.04_4.18.0.16.66_i386.deb | Linux |
| Linux kernel for Microsoft Azure Cloud systems (USN-3903-2) linux-image-lowlatency-hwe-18.04_4.18.0.16.66_amd64.deb | Linux |
| Linux kernel (USN-3908-1) linux-image-3.13.0-166-generic_3.13.0-166.216_i386.deb | Linux |
| Linux kernel (USN-3908-1) linux-image-3.13.0-166-generic_3.13.0-166.216_amd64.deb | Linux |
| Linux kernel (USN-3908-1) linux-image-3.13.0-166-lowlatency_3.13.0-166.216_i386.deb | Linux |
| Linux kernel (USN-3908-1) linux-image-3.13.0-166-lowlatency_3.13.0-166.216_amd64.deb | Linux |
| Linux kernel (USN-3910-1) linux-image-aws_4.4.0.1077.80_amd64.deb | Linux |
| Linux kernel (USN-3910-1) linux-image-kvm_4.4.0.1041.41_amd64.deb | Linux |
| Linux kernel (USN-3910-1) linux-image-generic_4.4.0.143.151_i386.deb | Linux |
| Linux kernel (USN-3910-1) linux-image-generic_4.4.0.143.151_amd64.deb | Linux |
| Linux kernel (USN-3910-1) linux-image-virtual_4.4.0.143.151_i386.deb | Linux |
| Linux kernel (USN-3910-1) linux-image-virtual_4.4.0.143.151_amd64.deb | Linux |
| Linux kernel (USN-3910-1) linux-image-lowlatency_4.4.0.143.151_i386.deb | Linux |
| Linux kernel (USN-3910-1) linux-image-lowlatency_4.4.0.143.151_amd64.deb | Linux |
| Linux kernel (USN-3910-1) linux-image-4.4.0-1041-kvm_4.4.0-1041.47_amd64.deb | Linux |
| Linux kernel (USN-3910-1) linux-image-4.4.0-1077-aws_4.4.0-1077.87_amd64.deb | Linux |
| Linux kernel (USN-3910-1) linux-image-4.4.0-143-generic_4.4.0-143.169_i386.deb | Linux |
| Linux kernel (USN-3910-1) linux-image-4.4.0-143-generic_4.4.0-143.169_amd64.deb | Linux |
| Linux kernel (USN-3910-1) linux-image-4.4.0-143-lowlatency_4.4.0-143.169_i386.deb | Linux |
| Linux kernel (USN-3910-1) linux-image-4.4.0-143-lowlatency_4.4.0-143.169_amd64.deb | Linux |
| Linux kernel for Amazon Web Services (AWS) systems (USN-3910-2) linux-image-aws_4.4.0.1039.40_amd64.deb | Linux |
| Linux kernel for Amazon Web Services (AWS) systems (USN-3910-2) linux-image-4.4.0-1039-aws_4.4.0-1039.42_amd64.deb | Linux |
| Linux kernel for Amazon Web Services (AWS) systems (USN-3910-2) linux-image-4.4.0-143-generic_4.4.0-143.169~14.04.2_i386.deb | Linux |
| Linux kernel for Amazon Web Services (AWS) systems (USN-3910-2) linux-image-4.4.0-143-generic_4.4.0-143.169~14.04.2_amd64.deb | Linux |
| Linux kernel for Amazon Web Services (AWS) systems (USN-3910-2) linux-image-4.4.0-143-lowlatency_4.4.0-143.169~14.04.2_i386.deb | Linux |
| Linux kernel for Amazon Web Services (AWS) systems (USN-3910-2) linux-image-4.4.0-143-lowlatency_4.4.0-143.169~14.04.2_amd64.deb | Linux |
| framework for managing administrative policies and privileges (USN-3934-1) policykit-1_0.105-21ubuntu0.4_i386.deb | Linux |
| framework for managing administrative policies and privileges (USN-3934-1) policykit-1_0.105-21ubuntu0.4_amd64.deb | Linux |
| framework for managing administrative policies and privileges (USN-3934-1) policykit-1_0.105-14.1ubuntu0.5_i386.deb | Linux |
| framework for managing administrative policies and privileges (USN-3934-1) policykit-1_0.105-14.1ubuntu0.5_amd64.deb | Linux |
| framework for managing administrative policies and privileges (USN-3934-1) policykit-1_0.105-4ubuntu3.14.04.6_i386.deb | Linux |
| framework for managing administrative policies and privileges (USN-3934-1) policykit-1_0.105-4ubuntu3.14.04.6_amd64.deb | Linux |
| framework for managing administrative policies and privileges (USN-3934-1) policykit-1_0.105-20ubuntu0.18.04.5_i386.deb | Linux |
| framework for managing administrative policies and privileges (USN-3934-1) policykit-1_0.105-20ubuntu0.18.04.5_amd64.deb | Linux |
| framework for managing administrative policies and privileges (USN-3934-1) libpolkit-backend-1-0_0.105-21ubuntu0.4_i386.deb | Linux |
| framework for managing administrative policies and privileges (USN-3934-1) libpolkit-backend-1-0_0.105-21ubuntu0.4_amd64.deb | Linux |
| framework for managing administrative policies and privileges (USN-3934-1) libpolkit-backend-1-0_0.105-14.1ubuntu0.5_i386.deb | Linux |
| framework for managing administrative policies and privileges (USN-3934-1) libpolkit-backend-1-0_0.105-14.1ubuntu0.5_amd64.deb | Linux |
| framework for managing administrative policies and privileges (USN-3934-1) libpolkit-backend-1-0_0.105-4ubuntu3.14.04.6_i386.deb | Linux |
| framework for managing administrative policies and privileges (USN-3934-1) libpolkit-backend-1-0_0.105-4ubuntu3.14.04.6_amd64.deb | Linux |
| framework for managing administrative policies and privileges (USN-3934-1) libpolkit-backend-1-0_0.105-20ubuntu0.18.04.5_i386.deb | Linux |
| framework for managing administrative policies and privileges (USN-3934-1) libpolkit-backend-1-0_0.105-20ubuntu0.18.04.5_amd64.deb | Linux |
| (RHSA-2019:0230) polkit security update polkit-0.112-18.el7_6.1.i686.rpm | Linux |
| (RHSA-2019:0230) polkit security update polkit-0.112-18.el7_6.1.x86_64.rpm | Linux |
| (RHSA-2019:0230) polkit security update polkit-devel-0.112-18.el7_6.1.i686.rpm | Linux |
| (RHSA-2019:0230) polkit security update polkit-devel-0.112-18.el7_6.1.x86_64.rpm | Linux |
| (RHSA-2019:0230) polkit security update polkit-docs-0.112-18.el7_6.1.noarch.rpm | Linux |
| Polkit update (ELSA-2019-0420) polkit-0.96-11.el6_10.1.x86_64.rpm | Linux |
| Polkit-devel update (ELSA-2019-0420) polkit-devel-0.96-11.el6_10.1.x86_64.rpm | Linux |
| Polkit-docs update (ELSA-2019-0420) polkit-docs-0.96-11.el6_10.1.x86_64.rpm | Linux |
| Polkit-desktop-policy update (ELSA-2019-0420) polkit-desktop-policy-0.96-11.el6_10.1.noarch.rpm | Linux |
| Polkit update (ELSA-2019-0420) polkit-0.96-11.el6_10.1.i686.rpm | Linux |
| Polkit-devel update (ELSA-2019-0420) polkit-devel-0.96-11.el6_10.1.i686.rpm | Linux |
| Polkit-docs update (ELSA-2019-0420) polkit-docs-0.96-11.el6_10.1.i686.rpm | Linux |
| (CESA-2019:0230) polkit security update polkit-docs-0.112-18.el7_6.1.noarch.rpm | Linux |
| Polkit update (ELSA-2022-1546) polkit-0.115-13.0.1.el8_5.2.x86_64.rpm | Linux |
| Polkit-devel update (ELSA-2022-1546) polkit-devel-0.115-13.0.1.el8_5.2.i686.rpm | Linux |
| Polkit-devel update (ELSA-2022-1546) polkit-devel-0.115-13.0.1.el8_5.2.x86_64.rpm | Linux |
| Polkit-docs update (ELSA-2022-1546) polkit-docs-0.115-13.0.1.el8_5.2.noarch.rpm | Linux |
| Polkit-libs update (ELSA-2022-1546) polkit-libs-0.115-13.0.1.el8_5.2.i686.rpm | Linux |
| Polkit-libs update (ELSA-2022-1546) polkit-libs-0.115-13.0.1.el8_5.2.x86_64.rpm | Linux |
| SUSE-SU-2019:2035-1(SUSE Linux Enterprise Server 12-SP5) libpolkit0-0.113-5.18.1.x86_64.rpm | Linux |
| SUSE-SU-2019:2035-1(SUSE Linux Enterprise Server 12-SP5) libpolkit0-debuginfo-0.113-5.18.1.x86_64.rpm | Linux |
| SUSE-SU-2019:2035-1(SUSE Linux Enterprise Server 12-SP5) polkit-0.113-5.18.1.x86_64.rpm | Linux |
| SUSE-SU-2019:2035-1(SUSE Linux Enterprise Server 12-SP5) polkit-debuginfo-0.113-5.18.1.x86_64.rpm | Linux |
| SUSE-SU-2019:2035-1(SUSE Linux Enterprise Server 12-SP5) polkit-debugsource-0.113-5.18.1.x86_64.rpm | Linux |
| SUSE-SU-2019:2035-1(SUSE Linux Enterprise Server 12-SP5) typelib-1_0-Polkit-1_0-0.113-5.18.1.x86_64.rpm | Linux |
| framework for managing administrative policies and privileges (USN-3934-1) libpolkit-backend-1-0_0.105-20ubuntu0.18.04.5_i386.deb | Linux |
| framework for managing administrative policies and privileges (USN-3934-1) libpolkit-backend-1-0_0.105-20ubuntu0.18.04.5_amd64.deb | Linux |
| Concurrent Execution using Shared Resource with Improper Synchronization (Race Condition) Vulnerability (CVE-2019-6133) | NCM |
Patch Details
No records foundReferences
https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234