oval:org.mitre.oval:def:26921

Definition Id: oval:org.mitre.oval:def:26921
 
Oval ID: oval:org.mitre.oval:def:26921
Title: RHSA-2014:1359: polkit-qt security update (Important)
Description: Polkit-qt is a library that lets developers use the PolicyKit API through a Qt-styled API. The polkit-qt library is used by the KDE Authentication Agent (KAuth), which is a part of kdelibs. It was found that polkit-qt handled authorization requests with PolicyKit via a D-Bus API that is vulnerable to a race condition. A local user could use this flaw to bypass intended PolicyKit authorizations. This update modifies polkit-qt to communicate with PolicyKit via a different API that is not vulnerable to the race condition. (CVE-2014-5033) All polkit-qt users are advised to upgrade to these updated packages, which contain a backported patch to correct this issue.
Family: unix Class: patch
Reference(s): RHSA-2014:1359-00
CESA-2014:1359
CVE-2014-5033
 Version: 3
Platform(s): Red Hat Enterprise Linux 7
CentOS Linux 7
 Product(s): polkit-qt
Definition Synopsis:
Definition Id: oval:org.mitre.oval:def:24773
 
Oval ID: oval:org.mitre.oval:def:24773
Title: The operating system installed on the system is CentOS Linux 7.x
Description: The operating system installed on the system is CentOS Linux 7.x
Family: unix Class: inventory
Reference(s): cpe:/o:centos:centos:7
 Version: 3
Platform(s): CentOS Linux 7
 Product(s):
Definition Synopsis:
Referenced By:
oval:org.mitre.oval:def:26921
Definition Id: oval:org.mitre.oval:def:24953
 
Oval ID: oval:org.mitre.oval:def:24953
Title: The operating system installed on the system is Red Hat Enterprise Linux 7
Description: The operating system installed on the system is Red Hat Enterprise Linux 7.
Family: unix Class: inventory
Reference(s): cpe:/o:redhat:enterprise_linux:7
 Version: 3
Platform(s): Red Hat Enterprise Linux 7
 Product(s):
Definition Synopsis:
Referenced By:
oval:org.mitre.oval:def:26921