1
Candidate: CVE-2015-3255
4
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-3255
6
The polkit_backend_action_pool_init function in
7
polkitbackend/polkitbackendactionpool.c in PolicyKit (aka polkit) before
8
0.113 might allow local users to gain privileges via duplicate action IDs
9
in action descriptions.
13
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=796134
14
https://bugs.freedesktop.org/show_bug.cgi?id=69501
15
https://bugs.freedesktop.org/show_bug.cgi?id=83590
16
https://bugzilla.redhat.com/show_bug.cgi?id=1245673
22
upstream: http://cgit.freedesktop.org/polkit/commit/?id=9f5e0c731784003bd4d6fc75ab739ff8b2ea269f
23
upstream_policykit-1: needs-triage
24
precise_policykit-1: ignored (reached end-of-life)
25
precise/esm_policykit-1: needed
26
trusty_policykit-1: needed
27
vivid_policykit-1: ignored (reached end-of-life)
28
vivid/stable-phone-overlay_policykit-1: ignored (reached end-of-life)
29
vivid/ubuntu-core_policykit-1: DNE
30
wily_policykit-1: released (0.105-11ubuntu1)
31
xenial_policykit-1: released (0.105-11ubuntu1)
32
yakkety_policykit-1: released (0.105-11ubuntu1)
33
zesty_policykit-1: released (0.105-11ubuntu1)
34
artful_policykit-1: released (0.105-11ubuntu1)
35
bionic_policykit-1: released (0.105-11ubuntu1)
36
devel_policykit-1: released (0.105-11ubuntu1)