Description
Details for this vulnerability have not been published by NIST at this point. Descriptions from software vendor advisories for this issue are provided below.From USN-5252-2:USN-5252-1 fixed a vulnerability in policykit-1. This update provides the corresponding update for Ubuntu 14.04 ESM and Ubuntu 16.04 ESM.Original advisory details:It was discovered that the PolicyKit pkexec tool incorrectly handled command-line arguments. A local attacker could use this issue to escalate privileges to an administrator.
Solution(s)
ubuntu-upgrade-availableubuntu-upgrade-desktopubuntu-upgrade-infraubuntu-upgrade-policykit-1
ReferencesUSN-5252-1USN-5252-2CVE-2021-4034