Polkit Security Vulnerability (CVE-2021-4034)

On January 25, 2022, a security vulnerability was identified in polkit’s pkexec program (also called Pwnkit vulnerability).

Polkit’s pkexec vulnerability is severe due to both the widespread deployment of pkexec across all major Linux and Unix systems, and the fact that the vulnerability can be easily exploited to gain root privilege.

In accordance with Planisware security practices, all impacted systems have been patched in the hours following the disclosure of the vulnerability.

More information on the vulnerability: