VDB

GCVE-VVD-MAGEIA-2021-244

GCVE-VVD-MAGEIA-2021-244
Advisory Published
Vulnetix · Advisory published June 8, 2021
A flaw was found in polkit. When a requesting process disconnects from dbus-daemon just before the call to polkit_system_bus_name_get_creds_sync starts, the process cannot get a unique uid and pid of the process and it cannot verify the privileges of the requesting process (CVE-2021-3560).
Download JSON Open in Console

Affected Products

VendorProductVersionsPlatforms
Mageiapolkit0 (affected), 0.116-1.1.mga7 (unaffected)
Mageiapolkit0 (affected), 0.118-1.1.mga8 (unaffected)

Aliases

CVE-2021-3560

Transitive aliases

VVD-GENTOO-2021-794052GHSA-7c49-j253-wq5rEUVD-2021-26871BDU:2021-03207VVD-CISA-2021-3560

References

Updated polkit packages fix a security vulnerability
advisory
Updated polkit packages fix a security vulnerability
issue
Updated polkit packages fix a security vulnerability
advisory

Browse GCVE Records

100 records in the GCVE database · Updated April 16, 2026

No matching records found.

Explore Further

Investigate this vulnerability in the interactive console or download the raw GCVE record.

Open in Console Download JSON
$ Console Community · 100/wk Open console ›