Headline
CVE-2022-23220: org.freedesktop.pkexec.usbview.policy: fix a local root privilege esc… · gregkh/usbview@bf374fa
USBView 2.1 before 2.2 allows some local users (e.g., ones logged in via SSH) to execute arbitrary code as root because certain Polkit settings (e.g., allow_any=yes) for pkexec disable the authentication requirement. Code execution can, for example, use the --gtk-module option. This affects Ubuntu, Debian, and Gentoo.
Permalink
Browse files
org.freedesktop.pkexec.usbview.policy: fix a local root privilege esc…
…alation issue via pkexec (CVE-2022-23220).
The polkit policy allowed unprivileged users to run usbview as root with arbitrary command line arguments, allowing a local root exploit.
Signed-off-by: Greg Kroah-Hartman [email protected]
- Loading branch information
1 parent 4a5de69 commit bf374fa4e5b9a756789dfd88efa93806a395463b
Showing with 2 additions and 2 deletions.
- +2 −2 org.freedesktop.pkexec.usbview.policy
@@ -8,8 +8,8 @@
<message>Authentication is required to view USB bus</message>
<icon_name>usbview_icon</icon_name>
<defaults>
<allow_any>yes</allow_any>
<allow_inactive>yes</allow_inactive>
<allow_any>no</allow_any>
<allow_inactive>no</allow_inactive>
<allow_active>auth_admin_keep</allow_active>
</defaults>
<annotate key="org.freedesktop.policykit.exec.path">/usr/bin/usbview</annotate>
0 comments on commit bf374fa
Please sign in to comment.