Description
Details for this vulnerability have not been published by NIST at this point. Descriptions from software vendor advisories for this issue are provided below.From ELSA-2022-0274:[0.112-26.0.1] - Increase timeout to avoid defunct processes [Orabug: 26930744] [0.112-26.1] - pkexec: argv overflow results in local privilege esc. - Resolves: CVE-2021-4034
Solution(s)
oracle-linux-upgrade-polkitoracle-linux-upgrade-polkit-develoracle-linux-upgrade-polkit-docsoracle-linux-upgrade-polkit-libs
ReferencesELSA-2022-0274CVE-2021-4034USN-5252-1USN-5252-2