** Changed in: screen-resolution-extra (Ubuntu)
Status: New => Fix Released
** Information type changed from Private Security to Public Security
--
You received this bug notification because you are a member of Desktop
Packages, which is subscribed to screen-resolution-extra in Ubuntu.
https://bugs.launchpad.net/bugs/1753772
Title:
PID reuse race with Policykit check
Status in screen-resolution-extra package in Ubuntu:
Fix Released
Bug description:
PolicyKitService._check_permission in /usr/share/screen-resolution-
extra/screenresolution-mechanism requests the calling process's PID
from dbus using the org.freedesktop.DBus.GetConnectionUnixProcessID
API, and then uses this PID to verify whether the calling process is
permitted to perform the requested action via Policykit. Policykit
maps this to a uid by looking in /proc/$pid.
This is subject to a PID reuse race, If an attacker were to hit this
race condition, they could replace /etc/X11/xorg.conf with an
arbitrary file, or back up /etc/X11/xorg.conf to any file on the
system.
To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/screen-resolution-extra/+bug/1753772/+subscriptions
--
Mailing list: https://launchpad.net/~desktop-packages
Post to : [email protected]
Unsubscribe : https://launchpad.net/~desktop-packages
More help : https://help.launchpad.net/ListHelp
