Pkexec Exploit Gives Attackers Root on Major Linux Distros

  • Thread starter Thread starter jim mcnamara
  • Start date Start date
  • Tags Tags
    Linux
Click For Summary

Discussion Overview

The discussion revolves around a security vulnerability in the pkexec component affecting major Linux distributions, specifically the implications of CVE-2021-4034 and the ongoing efforts to address it. The scope includes technical details about patches, historical context, and immediate workarounds.

Discussion Character

  • Technical explanation
  • Debate/contested
  • Experimental/applied

Main Points Raised

  • Some participants reference an article detailing the vulnerability and suggest that fixes will be forthcoming.
  • Others note that both the Linux kernel and pkexec maintainers are working on patches, providing links to relevant discussions and commits.
  • A participant highlights a historical context where Michael Kerrisk raised the issue in 2008, but there was no consensus on addressing it at that time.
  • One participant mentions that their Ubuntu machines have received a fix for the vulnerability.
  • Another participant expresses concern that their offline Linux boxes may not receive a fix soon, noting that WSL Ubuntu still exhibits the vulnerability.
  • A workaround is suggested by removing the setuid bit from the pkexec executable as a temporary measure.

Areas of Agreement / Disagreement

Participants generally agree that the vulnerability exists and that patches are being developed, but there is uncertainty regarding the timeline for fixes and the effectiveness of proposed workarounds. Multiple views on the historical context and urgency of the issue are present.

Contextual Notes

There are limitations regarding the effectiveness of the proposed workaround and the dependency on specific distributions for timely updates. The discussion reflects a mix of immediate concerns and historical perspectives on the vulnerability.

Technology news on Phys.org
PeterDonis said:
It looks like both the Linux kernel and the pkexec maintainers have patches in the works:

https://lore.kernel.org/lkml/20220126043947.10058-1-ariadne@dereferenced.org/T/

It looks like a proud "I told you so" moment for Michael Kerrisk:
https://lore.kernel.org/lkml/20220126043947.10058-1-ariadne@dereferenced.org/T/ said:
Interestingly, Michael Kerrisk opened an issue about this in 2008,
but there was no consensus to support fixing this issue then.
Hopefully now that CVE-2021-4034 shows practical exploitative use
of this bug in a shellcode, we can reconsider.
 
Reply
  • Haha
Likes   Reactions: Borg
My linux boxes are offline for a while - but WSL Ubuntu shows the problem. That does not bode well for a fix... in the next month.
 
jim mcnamara said:
WSL Ubuntu shows the problem.
You can "fix" it at least for the time being by removing the setuid bit from the pkexec executable.
 
Reply
  • Like
Likes   Reactions: jim mcnamara

Similar threads

IPhone zero-click Wi-Fi exploit: One of the most breathtaking hacks
  • · Replies 3 ·
Replies
3
Views
1K
Requesting suggestions for languages, libraries, and architectures for parallel (and sometimes non parallel) numerical and scientific computations
  • · Replies 8 ·
Replies
8
Views
4K
Plagiarism & ChatGPT: Is Cheating with AI the New Normal?
  • · Replies 39 ·
2
Replies
39
Views
10K
A novel compound epicyclic gear system I can't seem to understand
  • · Replies 1 ·
Replies
1
Views
2K
Graduate RIP Edwin F Taylor (1931-2025)
  • · Replies 3 ·
Replies
3
Views
1K
Current and Future AI Threats to Humanity and the Human Response
  • · Replies 10 ·
Replies
10
Views
5K
Writing: Input Wanted Can a Gamma-Ray Burst Affect Communication Devices?
  • · Replies 6 ·
Replies
6
Views
4K
Graduate BRS: PKI Cryptosystems for SA/Ms: A Tutorial
  • · Replies 13 ·
Replies
13
Views
4K
Too Much Stellar Flux: Fixing a 25-year old Problem
  • · Replies 9 ·
Replies
9
Views
4K
Engineering Change of major as a junior: Physics or Aerospace Engineering?
  • · Replies 4 ·
Replies
4
Views
3K