polkit: fix local priviledge escalation in pkexec
> We discovered a Local Privilege Escalation (from any user to root) in > polkit's pkexec, a SUID-root program that is installed by default on > every major Linux distribution https://www.qualys.com/2022/01/25/cve-2021-4034/pwnkit.txt Fixes: CVE-2021-4034
This commit is contained in:
parent
e74ccf2d72
commit
bd3256cf4f
1 changed files with 5 additions and 0 deletions
|
@ -60,6 +60,11 @@ stdenv.mkDerivation rec {
|
||||||
url = "https://gitlab.freedesktop.org/polkit/polkit/-/commit/7ba07551dfcd4ef9a87b8f0d9eb8b91fabcb41b3.patch";
|
url = "https://gitlab.freedesktop.org/polkit/polkit/-/commit/7ba07551dfcd4ef9a87b8f0d9eb8b91fabcb41b3.patch";
|
||||||
sha256 = "ebbLILncq1hAZTBMsLm+vDGw6j0iQ0crGyhzyLZQgKA=";
|
sha256 = "ebbLILncq1hAZTBMsLm+vDGw6j0iQ0crGyhzyLZQgKA=";
|
||||||
})
|
})
|
||||||
|
# pkexec: local privilege escalation (CVE-2021-4034)
|
||||||
|
(fetchpatch {
|
||||||
|
url = "https://gitlab.freedesktop.org/polkit/polkit/-/commit/a2bf5c9c83b6ae46cbd5c779d3055bff81ded683.patch";
|
||||||
|
sha256 = "162jkpg2myq0rb0s5k3nfr4pqwv9im13jf6vzj8p5l39nazg5i4s";
|
||||||
|
})
|
||||||
] ++ lib.optionals stdenv.hostPlatform.isMusl [
|
] ++ lib.optionals stdenv.hostPlatform.isMusl [
|
||||||
# Make netgroup support optional (musl does not have it)
|
# Make netgroup support optional (musl does not have it)
|
||||||
# Upstream MR: https://gitlab.freedesktop.org/polkit/polkit/merge_requests/10
|
# Upstream MR: https://gitlab.freedesktop.org/polkit/polkit/merge_requests/10
|
||||||
|
|
Loading…
Reference in a new issue