New Linux Flaws Enable Full Root Access via PAM and Udisks Across Major Distributions

ikidd@lemmy.world · 10 months ago

New Linux Flaws Enable Full Root Access via PAM and Udisks Across Major Distributions

atrielienz@lemmy.world · 10 months ago

Would implementing something like this prevent this problem?

https://discussion.fedoraproject.org/t/securing-fedora-with-fido2-utrust-full-disk-luks-gui-login-and-sudo-authentication/154136

dgdft@lemmy.world · 10 months ago

That is a setup guide for hardware key and passkey auth. It is not a hardening guide, and does nothing to mitigate these LPE vulns.

atrielienz@lemmy.world · 10 months ago

Thank you. That’s what I wanted to know.

TeNppa@sopuli.xyz · 10 months ago

This is said in the article:

To mitigate the risk posed by these flaws, it’s essential to apply patches provided by the Linux distribution vendors. As temporary workarounds, users can modify the Polkit rule for “org.freedesktop.udisks2.modify-device” to require administrator authentication (“auth_admin”).

New Linux Flaws Enable Full Root Access via PAM and Udisks Across Major Distributions

New Linux Flaws Enable Full Root Access via PAM and Udisks Across Major Distributions

Just a moment...