5.5 MEDIUM
- CVSS version: 3.1
- Attack vector (AV): LOCAL
- Attack complexity (AC): LOW
- Privileges required (PR): LOW
- User interaction (UI): NONE
- Scope (S): UNCHANGED
- Confidentiality impact (C): NONE
- Integrity impact (I): NONE
- Availability impact (A): HIGH
Polkit: polkit: denial of service via unbounded input processing through standard input
A flaw was found in polkit. A local user can exploit this by providing a specially crafted, excessively long input to the `polkit-agent-helper-1` setuid binary via standard input (stdin). This unbounded input can lead to an out-of-memory (OOM) condition, resulting in a Denial of Service (DoS) for the system.
References
- https://access.redhat.com/security/cve/CVE-2026-4897 x_refsource_REDHAT vdb-entry
- RHBZ#2451739 issue-tracking x_refsource_REDHAT
Affected products
Matching in nixpkgs
pkgs.polkit
Toolkit for defining and handling the policy that allows unprivileged processes to speak to privileged processes
pkgs.cmd-polkit
Easily create polkit authentication agents by using commands
pkgs.mate-polkit
Integrates polkit authentication for MATE desktop
pkgs.polkit_gnome
Dbus session bus service that is used to bring up authentication dialogs
pkgs.hyprpolkitagent
Polkit authentication agent written in QT/QML
pkgs.mate.mate-polkit
Integrates polkit authentication for MATE desktop
pkgs.pcscliteWithPolkit
Middleware to access a smart card using SCard API (PC/SC)
pkgs.libsForQt5.polkit-qt
Qt wrapper around PolKit
pkgs.deepin.dde-polkit-agent
PolicyKit agent for Deepin Desktop Environment
pkgs.kdePackages.polkit-qt-1
Qt wrapper around Polkit-1 client libraries
pkgs.plasma5Packages.polkit-qt
Qt wrapper around PolKit
pkgs.lomiri.lomiri-polkit-agent
Policy kit agent for the Lomiri desktop
pkgs.libsForQt5.polkit-kde-agent
None
pkgs.kdePackages.polkit-kde-agent-1
Daemon providing a Polkit authentication UI for Plasma
pkgs.pantheon.pantheon-agent-polkit
Polkit Agent for the Pantheon Desktop
pkgs.plasma5Packages.polkit-kde-agent
None
Package maintainers
-
@Daru-san Daru <zadarumaka@proton.me>
-
@wineee Lu Hongxu <lhongxu@outlook.com>
-
@fufexan Fufezan Mihai <fufexan@protonmail.com>
-
@johnrtitor Masum Reza <masumrezarock100@gmail.com>
-
@khaneliman Austin Horstman <khaneliman12@gmail.com>
-
@donovanglover Donovan Glover
-
@NotAShelf NotAShelf <raf@notashelf.dev>
-
@ttuegel Thomas Tuegel <ttuegel@mailbox.org>
-
@nyanloutre Paul Trehiou <paul@nyanlout.re>
-
@bkchr Bastian Köcher <nixos@kchr.de>
-
@ilya-fedin Ilya Fedin <fedin-ilja2010@ya.ru>
-
@SuperSandro2000 Sandro Jäckel <sandro.jaeckel@gmail.com>
-
@SCOTT-HAMILTON Scott Hamilton <sgn.hamilton@protonmail.com>
-
@mjm Matt Moriarity <matt@mattmoriarity.com>
-
@peterhoeg Peter Hoeg <peter@hoeg.com>
-
@FRidh Frederik Rietdijk <fridh@fridh.nl>
-
@LunNova Luna Nova <nixpkgs-maintainer@lunnova.dev>
-
@K900 Ilya K. <me@0upti.me>
-
@NickCao Nick Cao <nickcao@nichi.co>
-
@OPNA2608 Cosima Neidahl <opna2608@protonmail.com>
-
@bobby285271 Bobby Rong <rjl931189261@126.com>
-
@romildo José Romildo Malaquias <malaquias@gmail.com>
-
@johannesloetzsch Johannes Lötzsch <github@johannesloetzsch.de>
-
@davidak David Kleuker <post@davidak.de>
-
@anthonyroussel Anthony Roussel <anthony@roussel.dev>
-
@jtojnar Jan Tojnar <jtojnar@gmail.com>