import polkit-0.115-11.el8_4.1

2021-06-03 03:56:02 -04:00 · 2021-06-03 03:56:02 -04:00 · 220f047429
commit 220f047429
parent 9ff2483e8d
2 changed files with 19 additions and 1 deletions
--- a/SOURCES/polkit-0.115-CVE-2021-3560.patch
+++ b/SOURCES/polkit-0.115-CVE-2021-3560.patch
@ -0,0 +1,13 @@
+--- a/src/polkit/polkitsystembusname.c
+++ b/src/polkit/polkitsystembusname.c
+@@ -435,6 +435,9 @@ polkit_system_bus_name_get_creds_sync (PolkitSystemBusName           *system_bus
+   while (!((data.retrieved_uid && data.retrieved_pid) || data.caught_error))
+     g_main_context_iteration (tmp_context, TRUE);
+ 
+  if (data.caught_error)
+    goto out;
+
+   if (out_uid)
+     *out_uid = data.uid;
+   if (out_pid)
+
--- a/SPECS/polkit.spec
+++ b/SPECS/polkit.spec
@ -6,7 +6,7 @@
 Summary: An authorization framework
 Name: polkit
 Version: 0.115
-Release: 11%{?dist}
+Release: 11%{?dist}.1
 License: LGPLv2+
 URL: http://www.freedesktop.org/wiki/Software/polkit
 Source0: http://www.freedesktop.org/software/polkit/releases/%{name}-%{version}.tar.gz
@ -25,6 +25,7 @@ Patch8: polkit-0.115-allow-uid-of-1.patch
 Patch9: polkit-0.115-move-to-mozjs60.patch
 Patch10: polkit-0.115-jsauthority-memleak.patch
 Patch11: polkit-0.115-pkttyagent-tcsaflush-batch-erase.patch
+Patch12: polkit-0.115-CVE-2021-3560.patch


 BuildRequires: gcc-c++
@ -190,6 +191,10 @@ exit 0
 %{_libdir}/girepository-1.0/*.typelib

 %changelog
+* Tue May 25 2021 Jan Rybar <jrybar@redhat.com> - 0.115-11.1
+- early disconnection from D-Bus results in privilege esc.
+- Resolves: CVE-2021-3560
+
 * Mon Nov 04 2019 Jan Rybar <jrybar@redhat.com> - 0.115-11
 - pkttyagent: resetting terminal erases rest of input line
 - Resolves: rhbz#1757853