CIRT.GY | Linux Security Advisory (27th January 2022)

Linux Security Advisory (27th January 2022)

Ref# ADV2022_26 | Date: Jan 27th 2022

Several Linux Distributions have published a security advisory, highlighting vulnerabilities in PolKit on the 25th January 2022. It is recommended that you take the necessary precautions by ensuring your products are always updated.

PolKit- all versions

For more information on this update, you can follow these URLs:

https://www.debian.org/security/2022/dsa-5059

https://access.redhat.com/security/security-updates/#/security-advisories?q=polkit&p=1&sort=portal_publication_date%20desc&rows=10&portal_advisory_type=Security%20Advisory&documentKind=Errata

https://www.suse.com/support/update/

https://ubuntu.com/security/notices/USN-5252-1

The Guyana National CIRT recommends that users and administrators review these updates and apply them where necessary.

PDF Download: Linux Security Advisory.pdf

References

Linux security update (27th January 2022). Retrieved from Canadian Centre for Cyber Security.
https://cyber.gc.ca/en/alerts/linux-security-advisory-av22-042
Linux security updates. (25th January 2022). Retrieved from Qualys Community.
https://blog.qualys.com/vulnerabilities-threat-research/2022/01/25/pwnkit-local-privilege-escalation-vulnerability-discovered-in-polkits-pkexec-cve-2021-4034