Security News

Cybersecurity news aggregator

🔓
MEDIUM Vulnerabilities Ubuntu Security

USN-8173-1: polkit vulnerabilities

cve-2025-7519cve-2026-4897polkit
  • What: Vulnerabilities in polkit allow denial of service
  • Impact: Attackers can crash the service through malicious policy files or input
Read Full Article →

It was discovered that polkit incorrectly handled nested elements in XML policy files. If an administrator were tricked into installing a malicious policy file, a remote attacker could possibly use this issue to cause polkit to crash, resulting in a denial of service. (CVE-2025-7519) Pavel Kohout discovered that the polkit polkit-agent-helper-1 utility incorrectly handled long input. A local attacker could possibly use this issue to cause polkit to crash, resulting in a denial of service. (CVE-2026-4897)

Related Articles

MEDIUM CVE-2026-4897 Polkit: polkit: denial of service via unbounded input processing through standard input Microsoft Security Response Center HIGH USN-8172-1: kvmtool vulnerabilities Ubuntu Security HIGH USN-8106-1: Valkey vulnerabilities Ubuntu Security
Read Full Article → ← Back to News

Share this article

Twitter Facebook LinkedIn