Package "pkexec"

Name:	pkexec
Description:	run commands as another user with polkit authorization
Latest version:	124-2ubuntu1.24.04.3
Release:	noble (24.04)
Level:	updates
Repository:	main
Head package:	policykit-1
Homepage:	https://github.com/polkit-org/polkit/

Links

Raw Package Information

All versions of this package

Bug fixes

List of files in package

Repository home page

Download "pkexec"

32-bit deb package

64-bit deb package

APT INSTALL

Other versions of "pkexec" in Noble

Repository	Area	Version
base	main	124-2ubuntu1
security	main	124-2ubuntu1.24.04.3

Changelog

Version: 124-2ubuntu1.24.04.3 2026-04-14 12:08:09 UTC

policykit-1 (124-2ubuntu1.24.04.3) noble-security; urgency=medium * SECURITY UPDATE: OOB write via nested elements in XML policy - debian/patches/CVE-2025-7519.patch: check depth in src/polkitbackend/polkitbackendactionpool.c. - CVE-2025-7519 * SECURITY UPDATE: DoS via excessively long input - debian/patches/CVE-2026-4897.patch: fix getline() string overflow in src/polkitagent/polkitagenthelperprivate.c. - CVE-2026-4897 -- Marc Deslauriers <email address hidden> Fri, 10 Apr 2026 06:57:51 -0400

Source diff to previous version

CVE-2025-7519	A flaw was found in polkit. When processing an XML policy with 32 or more nested elements in depth, an out-of-bounds write can be triggered. This iss
CVE-2026-4897	A flaw was found in polkit. A local user can exploit this by providing a specially crafted, excessively long input to the `polkit-agent-helper-1` set

Version: 124-2ubuntu1.24.04.2 2025-01-20 19:07:06 UTC

policykit-1 (124-2ubuntu1.24.04.2) noble; urgency=medium * debian/patches/git-action-directories.patch: - fix incorrect call to get instance's priv. (lp: #2089145)

2089145

Backport patch to read actions from /etc and /run

About - Send Feedback to @ubuntu_updates

Package "pkexec"

Links

Download "pkexec"

Other versions of "pkexec" in Noble

Changelog

Share this page

Bookmarks

Latest updates

proposed

base

security

updates

PPA updates