Suggestions search

All statuses

Filter by:

With package: polkit_gnome

Found 2 matching suggestions

View:

Compact

Detailed

Untriaged

Permalink CVE-2026-4897

5.5 MEDIUM

CVSS version: 3.1
Attack vector (AV): LOCAL
Attack complexity (AC): LOW
Privileges required (PR): LOW
User interaction (UI): NONE
Scope (S): UNCHANGED
Confidentiality impact (C): NONE
Integrity impact (I): NONE
Availability impact (A): HIGH

created 2 weeks, 5 days ago

Polkit: polkit: denial of service via unbounded input processing through standard input

A flaw was found in polkit. A local user can exploit this by providing a specially crafted, excessively long input to the `polkit-agent-helper-1` setuid binary via standard input (stdin). This unbounded input can lead to an out-of-memory (OOM) condition, resulting in a Denial of Service (DoS) for the system.

References

https://access.redhat.com/security/cve/CVE-2026-4897 vdb-entryx_refsource_REDHAT
RHBZ#2451739 x_refsource_REDHATissue-tracking

Affected products

rhcos

polkit

Matching in nixpkgs

pkgs.polkit

Toolkit for defining and handling the policy that allows unprivileged processes to speak to privileged processes

nixos-unstable 127
- nixpkgs-unstable 127
- nixos-unstable-small 127
nixos-25.11 126
- nixos-25.11-small 126
- nixpkgs-25.11-darwin 126

pkgs.cmd-polkit

Easily create polkit authentication agents by using commands

nixos-unstable 0.3.0
- nixpkgs-unstable 0.3.0
- nixos-unstable-small 0.3.0
nixos-25.11 0.3.0
- nixos-25.11-small 0.3.0
- nixpkgs-25.11-darwin 0.3.0

pkgs.mate-polkit

Integrates polkit authentication for MATE desktop

nixos-unstable 1.28.1
- nixpkgs-unstable 1.28.1
- nixos-unstable-small 1.28.1

pkgs.polkit_gnome

Dbus session bus service that is used to bring up authentication dialogs

nixos-unstable 0.105
- nixpkgs-unstable 0.105
- nixos-unstable-small 0.105
nixos-25.11 0.105
- nixos-25.11-small 0.105
- nixpkgs-25.11-darwin 0.105

pkgs.hyprpolkitagent

Polkit authentication agent written in QT/QML

nixos-unstable 0.1.3
- nixpkgs-unstable 0.1.3
- nixos-unstable-small 0.1.3
nixos-25.11 0.1.3
- nixos-25.11-small 0.1.3
- nixpkgs-25.11-darwin 0.1.3

pkgs.mate.mate-polkit

Integrates polkit authentication for MATE desktop

nixos-unstable 1.28.1
- nixpkgs-unstable 1.28.1
- nixos-unstable-small 1.28.1
nixos-25.11 1.28.1
- nixos-25.11-small 1.28.1
- nixpkgs-25.11-darwin 1.28.1

pkgs.pcscliteWithPolkit

Middleware to access a smart card using SCard API (PC/SC)

nixos-unstable 2.4.1
- nixpkgs-unstable 2.4.1
- nixos-unstable-small 2.4.1
nixos-25.11 2.3.0
- nixos-25.11-small 2.3.0
- nixpkgs-25.11-darwin 2.3.0

pkgs.libsForQt5.polkit-qt

Qt wrapper around PolKit

nixos-unstable 1-0.114.0
- nixpkgs-unstable 1-0.114.0
- nixos-unstable-small 1-0.114.0
nixos-25.11 1-0.114.0
- nixos-25.11-small 1-0.114.0
- nixpkgs-25.11-darwin 1-0.114.0

pkgs.deepin.dde-polkit-agent

PolicyKit agent for Deepin Desktop Environment

pkgs.kdePackages.polkit-qt-1

Qt wrapper around Polkit-1 client libraries

nixos-unstable 1-0.200.0
- nixpkgs-unstable 1-0.200.0
- nixos-unstable-small 1-0.200.0
nixos-25.11 1-0.200.0
- nixos-25.11-small 1-0.200.0
- nixpkgs-25.11-darwin 1-0.200.0

pkgs.plasma5Packages.polkit-qt

Qt wrapper around PolKit

nixos-unstable 1-0.114.0
- nixpkgs-unstable 1-0.114.0
- nixos-unstable-small 1-0.114.0
nixos-25.11 1-0.114.0
- nixos-25.11-small 1-0.114.0
- nixpkgs-25.11-darwin 1-0.114.0

pkgs.lomiri.lomiri-polkit-agent

Policy kit agent for the Lomiri desktop

nixos-unstable 0.3.2
- nixpkgs-unstable 0.3.2
- nixos-unstable-small 0.3.2
nixos-25.11 0.3.2
- nixos-25.11-small 0.3.2
- nixpkgs-25.11-darwin 0.3.2

pkgs.libsForQt5.polkit-kde-agent

None

pkgs.kdePackages.polkit-kde-agent-1

Daemon providing a Polkit authentication UI for Plasma

nixos-unstable 1-6.6.3
- nixpkgs-unstable 1-6.6.3
- nixos-unstable-small 1-6.6.3
nixos-25.11 1-6.5.5
- nixos-25.11-small 1-6.5.5
- nixpkgs-25.11-darwin 1-6.5.5

pkgs.pantheon.pantheon-agent-polkit

Polkit Agent for the Pantheon Desktop

nixos-unstable 8.0.2
- nixpkgs-unstable 8.0.2
- nixos-unstable-small 8.0.2
nixos-25.11 8.0.1
- nixos-25.11-small 8.0.1
- nixpkgs-25.11-darwin 8.0.1

pkgs.plasma5Packages.polkit-kde-agent

None

Package maintainers

@Daru-san Daru <zadarumaka@proton.me>
@wineee Lu Hongxu <lhongxu@outlook.com>
@johnrtitor Masum Reza <masumrezarock100@gmail.com>
@donovanglover Donovan Glover
@NotAShelf NotAShelf <raf@notashelf.dev>
@fufexan Fufezan Mihai <fufexan@protonmail.com>
@khaneliman Austin Horstman <khaneliman12@gmail.com>
@mjm Matt Moriarity <matt@mattmoriarity.com>
@ilya-fedin Ilya Fedin <fedin-ilja2010@ya.ru>
@K900 Ilya K. <me@0upti.me>
@LunNova Luna Nova <nixpkgs-maintainer@lunnova.dev>
@SuperSandro2000 Sandro Jäckel <sandro.jaeckel@gmail.com>
@ttuegel Thomas Tuegel <ttuegel@mailbox.org>
@NickCao Nick Cao <nickcao@nichi.co>
@nyanloutre Paul Trehiou <paul@nyanlout.re>
@OPNA2608 Cosima Neidahl <opna2608@protonmail.com>
@johannesloetzsch Johannes Lötzsch <github@johannesloetzsch.de>
@romildo José Romildo Malaquias <malaquias@gmail.com>
@bobby285271 Bobby Rong <rjl931189261@126.com>
@davidak David Kleuker <post@davidak.de>
@anthonyroussel Anthony Roussel <anthony@roussel.dev>
@jtojnar Jan Tojnar <jtojnar@gmail.com>

Untriaged

Permalink CVE-2025-7519

6.7 MEDIUM

CVSS version: 3.1
Attack vector (AV): LOCAL
Attack complexity (AC): LOW
Privileges required (PR): HIGH
User interaction (UI): NONE
Scope (S): UNCHANGED
Confidentiality impact (C): HIGH
Integrity impact (I): HIGH
Availability impact (A): HIGH

created 9 months ago

Polkit: xml policy file with a large number of nested elements may lead to out-of-bounds write

A flaw was found in polkit. When processing an XML policy with 32 or more nested elements in depth, an out-of-bounds write can be triggered. This issue can lead to a crash or other unexpected behavior, and arbitrary code execution is not discarded. To exploit this flaw, a high-privilege account is needed as it's required to place the malicious policy file properly.