CVE-2015-3255
Ubuntu Security Notice USN-3717-2
Severity Score
Exploit Likelihood
Affected Versions
Public Exploits
0Exploited in Wild
-Decision
Descriptions
The polkit_backend_action_pool_init function in polkitbackend/polkitbackendactionpool.c in PolicyKit (aka polkit) before 0.113 might allow local users to gain privileges via duplicate action IDs in action descriptions.
La función polkit_backend_action_pool_init en polkitbackend/polkitbackendactionpool.c en PolicyKit (también conocido como polkit) en versiones anteriores a 0.113 podría permitir a usuarios locales obtener privilegios a través de IDs de acción duplicados en descripciones de acción.
Tavis Ormandy discovered that PolicyKit incorrectly handled certain invalid object paths. A local attacker could possibly use this issue to cause PolicyKit to crash, resulting in a denial of service. This issue only affected Ubuntu 14.04 LTS. It was discovered that PolicyKit incorrectly handled certain duplicate action IDs. A local attacker could use this issue to cause PolicyKit to crash, resulting in a denial of service, or possibly escalate privileges. This issue only affected Ubuntu 14.04 LTS. Various other issues were also addressed.
CVSS Scores
SSVC
- Decision:-
Timeline
- 2015-04-10 CVE Reserved
- 2015-10-26 CVE Published
- 2024-08-06 CVE Updated
- 2025-03-30 EPSS Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
- CWE-264: Permissions, Privileges, and Access Controls
CAPEC
References (8)
| URL | Tag | Source |
|---|---|---|
| http://lists.freedesktop.org/archives/polkit-devel/2015-July/000432.html | Mailing List | |
| http://www.securitytracker.com/id/1035023 | Vdb Entry | |
| https://bugs.freedesktop.org/show_bug.cgi?id=83590 | X_refsource_confirm | |
| https://bugzilla.redhat.com/show_bug.cgi?id=1245673 | X_refsource_confirm |
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|---|---|
| http://lists.opensuse.org/opensuse-security-announce/2015-10/msg00010.html | 2018-07-28 | |
| http://lists.opensuse.org/opensuse-updates/2015-11/msg00042.html | 2018-07-28 | |
| https://security.gentoo.org/glsa/201611-07 | 2018-07-28 | |
| https://usn.ubuntu.com/3717-2 | 2018-07-28 |
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Polkit Project Search vendor "Polkit Project" | Polkit Search vendor "Polkit Project" for product "Polkit" | <= 0.112 Search vendor "Polkit Project" for product "Polkit" and version " <= 0.112" | - |
Affected
| ||||||