CVE-2016-2568
Published: 13 February 2017
pkexec, when used with --user nonpriv, allows local users to escape to the parent session via a crafted TIOCSTI ioctl call, which pushes characters to the terminal's input buffer.
Priority
Low
CVSS 3 base score: 7.8
Status
| Package | Release | Status |
|---|---|---|
|
policykit-1 Launchpad, Ubuntu, Debian |
Upstream |
Needed
|
| Ubuntu 21.04 (Hirsute Hippo) |
Deferred
(2019-03-20)
|
|
| Ubuntu 20.10 (Groovy Gorilla) |
Deferred
(2019-03-20)
|
|
| Ubuntu 20.04 LTS (Focal Fossa) |
Deferred
(2019-03-20)
|
|
| Ubuntu 18.04 LTS (Bionic Beaver) |
Deferred
(2019-03-20)
|
|
| Ubuntu 16.04 ESM (Xenial Xerus) |
Deferred
(2019-03-20)
|
|
| Ubuntu 14.04 ESM (Trusty Tahr) |
Deferred
(2019-03-20)
|
Notes
| Author | Note |
|---|---|
| mdeslaur | no fix available as of 2019-03-20 |
References
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2568
- http://seclists.org/oss-sec/2016/q1/443
- https://lore.kernel.org/patchwork/patch/793178/
- NVD
- Launchpad
- Debian