Debian 10264 Published by

A policykit-1 security update has been released for Debian GNU/Linux 8 Extended LTS to address a local privilege escalation in PolicyKit’s pkexec.



ELA-551-1 policykit-1 security update

Package policykit-1
Version 0.105-15~deb8u5
Related CVEs CVE-2021-4034

The Qualys Research Labs discovered a local privilege escalation in PolicyKit’s pkexec.

Details can be found in the Qualys advisory at https://www.qualys.com/2022/01/25/cve-2021-4034/pwnkit.txt

For Debian 8 jessie, these problems have been fixed in version 0.105-15~deb8u5.

We recommend that you upgrade your policykit-1 packages.

Further information about Extended LTS security advisories can be found at: https://deb.freexian.com/extended-lts/

  ELA-551-1 policykit-1 security update