PwnKit Linux bug lets an unprivileged user gain full root privileges

clock • 3 min read
PwnKit bug in Linux lets an unprivileged user to gain full root privileges on the system
Image:

PwnKit bug in Linux lets an unprivileged user to gain full root privileges on the system

The 12-year-old flaw exists in the pkexec component of Polkit system utility

Researchers at Qualys have uncovered a now-patched security vulnerability in a widely used Linux security toolkit that could enable an attacker to gain full root privileges on the system if they ha...

To continue reading this article...

Join Computing

  • Unlimited access to real-time news, analysis and opinion from the technology industry
  • Receive important and breaking news in our daily newsletter
  • Be the first to hear about our events and awards programmes
  • Join live member only interviews with IT leaders at the ‘IT Lounge’; your chance to ask your burning tech questions and have them answered
  • Access to the Computing Delta hub providing market intelligence and research
  • Receive our members-only newsletter with exclusive opinion pieces from senior IT Leaders

Join now

 

Already a Computing member?

Login

You may also like
CrowdStrike updates caused Linux outages in April

Business Software

CrowdStrike updates caused Linux outages in April

But they went unnoticed

clock 22 July 2024 • 3 min read
SolarWinds patches eight critical flaws in Access Rights Manager software

Threats and Risks

SolarWinds patches eight critical flaws in Access Rights Manager software

Disclosure raises fresh security concerns

clock 21 July 2024 • 3 min read
'Critical' vulnerability in OpenSSH uncovered, affects almost all Linux systems

Threats and Risks

'Critical' vulnerability in OpenSSH uncovered, affects almost all Linux systems

14 million internet-facing servers are vulnerable, says Qualys

clock 01 July 2024 • 2 min read
Author spotlight

Dev Kundaliya

View profile
More from Dev Kundaliya

CrowdStrike: Thousands of typosquatting domains registered after global outage

Tata's UK gigafactory project takes major step forward

Sign up to our newsletter

The best news, stories, features and photos from the day in one perfectly formed email.

Get the newsletter

More on Threats and Risks

CrowdStrike: Thousands of typosquatting domains registered after global outage
Threats and Risks

CrowdStrike: Thousands of typosquatting domains registered after global outage

CrowdStrike says cybercriminals are attempting to install a new infostealer malware through fake fixes

Dev Kundaliya
clock 24 July 2024 • 2 min read
SolarWinds patches eight critical flaws in Access Rights Manager software
Threats and Risks

SolarWinds patches eight critical flaws in Access Rights Manager software

Disclosure raises fresh security concerns

Dev Kundaliya
clock 21 July 2024 • 3 min read
Cisco patches critical flaw in Secure Email Gateway appliances
Threats and Risks

Cisco patches critical flaw in Secure Email Gateway appliances

Patch devices immediately

Dev Kundaliya
clock 19 July 2024 • 3 min read