David Zeuthen zeuthen at
Tue Apr 19 11:57:00 PDT 2011


A while ago, I was privately contacted about a vulnerability in
PolicyKit. For more details see,

Now that the embargo for this issue has been lifted (my contact from
Red Hat's security response team has been in contact with other
vendors for a coordinated release), I have pushed the fixes, see

to the master branch. I have also created a polkit-0-96 branch with
the fixes backported to version 0.96, see

since this is the version that my employer ships in a supported product.

I will probably release 0.102 soon - until then vendors are advised to
include these patches ASAP.


More information about the polkit-devel mailing list