Home
Packages
Forums
Wiki
GitLab
Security
AUR
Download

issues
advisories
todo
stats
log
login

CVE-2021-4115 - log back

CVE-2021-4115 created at 25 Mar 2022 12:40:46

Severity

+

Medium

Remote

+

Local

Type

+	Denial of service

Description

+	There is a file descriptor leak in polkit, which can enable an unprivileged user to cause polkit to crash, due to file descriptor exhaustion.

References

+	https://www.openwall.com/lists/oss-security/2022/02/18/5
+	https://gitlab.freedesktop.org/polkit/polkit/-/issues/141
+	https://gitlab.freedesktop.org/polkit/polkit/-/commit/41cb093f554da8772362654a128a84dd8a5542a7

Notes