CVE-2019-3842

 

Published at: - 09-04-2019 11:29

Last modified: - 31-01-2022 07:51

Total changes: - 4

Description

In systemd before v242-rc4, it was discovered that pam_systemd does not properly sanitize the environment before using the XDG_SEAT variable. It is possible for an attacker, in some particular configurations, to set a XDG_SEAT environment variable which allows for commands to be checked against polkit policies using the "allow_active" element rather than "allow_any".

Common Vulnerability Scoring System (CVSS)

CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H

 

Verification logic

 

Reference

• https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-3842
• FEDORA-2019-3fa5db9e19-Mailing List, Release Notes, Third Party Advisory
• 46743-Exploit, Third Party Advisory, VDB Entry
• http://packetstormsecurity.com/files/152610/systemd-Seat-Verification-Active-Session-Spoofing.html
• [debian-lts-announce] 20190424 [SECURITY] [DLA 1762-1] systemd security update-Third Party Advisory
• openSUSE-SU-2019:1450-Third Party Advisory
• [bookkeeper-issues] 20210628 [GitHub] [bookkeeper] padma81 opened a new issue #2746: Security Vulnerabilities in CentOS 7 image, Upgrade image to CentOS 8-Third Party Advisory
• [bookkeeper-issues] 20210629 [GitHub] [bookkeeper] padma81 opened a new issue #2746: Security Vulnerabilities in CentOS 7 image, Upgrade image to CentOS 8-Third Party Advisory

 

Keywords

NVD

 

CVE-2019-3842

 

CVE

 

Common vulnerabilities & exposures

 

CVSS

 

Common vulnerability scoring system

 

Security

 

Vulnerabilities

 

Exposures