- CVE-2021-3560: fixed a local privilege escalation using polkit_system_bus_name_get_creds_sync()

(bsc#1186497) CVE-2021-3560.patch OBS-URL: https://build.opensuse.org/package/show/Base:System/polkit?expand=0&rev=156
2021-06-11 09:24:05 +00:00 · 2021-06-11 09:24:05 +00:00 · 1df0a7ac75
commit 1df0a7ac75
parent a04790d11c
3 changed files with 22 additions and 0 deletions
--- a/CVE-2021-3560.patch
+++ b/CVE-2021-3560.patch
@ -0,0 +1,13 @@
+--- a/src/polkit/polkitsystembusname.c
+++ b/src/polkit/polkitsystembusname.c
+@@ -435,6 +435,9 @@ polkit_system_bus_name_get_creds_sync (PolkitSystemBusName           *system_bus
+   while (!((data.retrieved_uid && data.retrieved_pid) || data.caught_error))
+     g_main_context_iteration (tmp_context, TRUE);
+ 
+  if (data.caught_error)
+    goto out;
+
+   if (out_uid)
+     *out_uid = data.uid;
+   if (out_pid)
+
--- a/polkit.changes
+++ b/polkit.changes
@ -4,6 +4,13 @@ Wed Jun  9 07:09:16 UTC 2021 - Dominique Leuenberger <dimstar@opensuse.org>
 - Fix verifyscript: the path to the binary was wrongly defined as
  %{_libexecdir}/lib.

+-------------------------------------------------------------------
+Thu May 27 11:52:44 UTC 2021 - Marcus Meissner <meissner@suse.com>
+
+- CVE-2021-3560: fixed a local privilege escalation using polkit_system_bus_name_get_creds_sync()
+ (bsc#1186497)
+  CVE-2021-3560.patch
+
 -------------------------------------------------------------------
 Thu Mar 11 22:21:07 UTC 2021 - Thorsten Kukuk <kukuk@suse.com>

--- a/polkit.spec
+++ b/polkit.spec
@ -39,6 +39,8 @@ Patch3:         polkit-keyinit.patch
 # adjust path to polkit-agent-helper-1 (bsc#1180474)
 Patch4:         polkit-adjust-libexec-path.patch

+Patch5:         CVE-2021-3560.patch
+
 BuildRequires:  gcc-c++
 BuildRequires:  gtk-doc
 BuildRequires:  intltool