** Changed in: screen-resolution-extra (Ubuntu)
       Status: New => Fix Released

** Information type changed from Private Security to Public Security

-- 
You received this bug notification because you are a member of Desktop
Packages, which is subscribed to screen-resolution-extra in Ubuntu.
https://bugs.launchpad.net/bugs/1753772

Title:
  PID reuse race with Policykit check

Status in screen-resolution-extra package in Ubuntu:
  Fix Released

Bug description:
  PolicyKitService._check_permission in /usr/share/screen-resolution-
  extra/screenresolution-mechanism requests the calling process's PID
  from dbus using the org.freedesktop.DBus.GetConnectionUnixProcessID
  API, and then uses this PID to verify whether the calling process is
  permitted to perform the requested action via Policykit. Policykit
  maps this to a uid by looking in /proc/$pid.

  This is subject to a PID reuse race, If an attacker were to hit this
  race condition, they could replace /etc/X11/xorg.conf with an
  arbitrary file, or back up /etc/X11/xorg.conf to any file on the
  system.

To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/screen-resolution-extra/+bug/1753772/+subscriptions

-- 
Mailing list: https://launchpad.net/~desktop-packages
Post to     : desktop-packages@lists.launchpad.net
Unsubscribe : https://launchpad.net/~desktop-packages
More help   : https://help.launchpad.net/ListHelp

Reply via email to