| Errata ID | 595 |
|---|---|
| Date | 2019-02-06 |
| Source package | policykit-1 |
| Fixed in version | 0.105-15~deb8u4 |
| Description | This update addresses the following issues: * Improper handling of user with uid > INT_MAX leading to authentication bypass (CVE-2018-19788) * Temporary auth hijacking via PID reuse and non-atomic fork (CVE-2019-6133) |
| Additional notes | |
| CVE ID | CVE-2018-19788 CVE-2019-6133 |
| UCS Bug number | #48599 |
