Monday, May 23, 2022

Linux vulnerability allows any unprivileged user to gain full root privileges: Report

Linux administrators are being urged to check for security updates after the discovery of a memory corruption vulnerability that has been around for over a decade.

According to researchers at Qualys, the problem is inside Polkit (formerly PolicyKit), a component for controlling system-wide privileges in Unix-like operating systems. Inside polkit is pkexec, a vulnerable SUID-root program that is installed by default on every major Linux distribution. Qualys dubs it the Pwnkit vulnerability.

“This easily exploited vulnerability allows any unprivileged user to gain full root privileges on a vulnerable host by exploiting this vulnerability in its default configuration,” the company said in a posting this week.

Qualys said it has been able to independently verify the vulnerability, develop an exploit, and obtain full root privileges on default installations of Ubuntu, Debian, Fedora, and CentOS. Other Linux distributions are likely vulnerable and probably exploitable.

“This vulnerability has been hiding in plain sight for 12+ years and affects all versions of pkexec since its first version in May 2009 (commit c8c3d83,  “Add a pkexec(1) command”),” the report says.

Red Hat was notified in November about the problem and has issued an advisory with mitigation instructions. An advisory and a patch were sent on January 11th to the OpenWall Project, whose patches and security extensions are included in many major Linux distributions.

Given the breadth of the attack surface for this vulnerability across both Linux and non-Linux OSes, Qualys recommends that users apply patches for this vulnerability immediately.

Would you recommend this article?

Share

Thanks for taking the time to let us know what you think of this article!
We'd love to hear your opinion about this or any other story you read in our publication. Click this link to send me a note →

Jim Love, Chief Content Officer, IT World Canada
Howard Solomon
Howard Solomon
Currently a freelance writer, I'm the former editor of ITWorldCanada.com and Computing Canada. An IT journalist since 1997, I've written for several of ITWC's sister publications including ITBusiness.ca and Computer Dealer News. Before that I was a staff reporter at the Calgary Herald and the Brampton (Ont.) Daily Times. I can be reached at hsolomon [@] soloreporter.com

Related Tech News

Our experienced team of journalists and bloggers bring you engaging in-depth interviews, videos and content targeted to IT professionals and line-of-business executives.