https://live.paloaltonetworks.com/t5/expedition-articles/ubuntu-patch-for-cve-2021-4034/ta-p/461834 <P class="p1">Your Expedition VM might be vulnerable to the CVE-2021-4034, here is the Info regarding the vulnerability:</P> <P class="p1">&nbsp;</P> <P class="p1">Polkit (formerly PolicyKit) is a component for controlling system-wide privileges in Unix-like operating systems. It provides an organized way for non-privileged processes to communicate with privileged ones. It is also possible to use polkit to execute commands with elevated privileges using the command pkexec followed by the command intended to be executed (with root permission).<BR /><BR />Please refer to the website for detail info : <A href="https://ubuntu.com/security/cve-2021-4034" target="_blank" rel="noopener">https://ubuntu.com/security/cve-2021-4034</A><BR /><BR /><STRONG>To Patch your Ubuntu system, please follow below steps:</STRONG></P> <P class="p1">&nbsp;</P> <P class="p1">1. Adding below line to the&nbsp;<STRONG>/etc/apt/sources.list</STRONG>&nbsp;:</P> <PRE>deb http://security.ubuntu.com/ubuntu focal-security main </PRE> <P>2. Run below commands to update the policy-1 package:</P> <PRE>$sudo apt-get update<BR />$sudo apt-get install policykit-1</PRE> <P class="p1">3. Verify the policykit-1 package has been updated to v.&nbsp;<SPAN>0.105-26ubuntu1.2 as shown in below screen:</SPAN></P> <P class="p1">&nbsp;</P> <P><span class="lia-inline-image-display-wrapper lia-image-align-inline" image-alt="Screen Shot 2022-01-28 at 9.55.32 AM.png" style="width: 400px;"><img src="https://live.paloaltonetworks.com/t5/image/serverpage/image-id/38892i89833EEDE5CE233B/image-size/medium/is-moderation-mode/true?v=v2&amp;px=400" role="button" title="Screen Shot 2022-01-28 at 9.55.32 AM.png" alt="Screen Shot 2022-01-28 at 9.55.32 AM.png" /></span></P> <P>&nbsp;</P> <P><SPAN>Those who can’t patch immediately should use below command&nbsp;</SPAN><SPAN>to remove the SUID-bit from pkexec:</SPAN></P> <P>&nbsp;</P> <PRE>$chmod 0755 /usr/bin/pkexec</PRE> <P>&nbsp;</P> Fri, 28 Jan 2022 18:06:41 GMT lychiang 2022-01-28T18:06:41Z https://live.paloaltonetworks.com/t5/expedition-articles/ubuntu-patch-for-cve-2021-4034/ta-p/461834 <P class="p1">Your Expedition VM might be vulnerable to the CVE-2021-4034, here is the Info regarding the vulnerability:</P> <P class="p1">&nbsp;</P> <P class="p1">Polkit (formerly PolicyKit) is a component for controlling system-wide privileges in Unix-like operating systems. It provides an organized way for non-privileged processes to communicate with privileged ones. It is also possible to use polkit to execute commands with elevated privileges using the command pkexec followed by the command intended to be executed (with root permission).<BR /><BR />Please refer to the website for detail info : <A href="https://ubuntu.com/security/cve-2021-4034" target="_blank" rel="noopener">https://ubuntu.com/security/cve-2021-4034</A><BR /><BR /><STRONG>To Patch your Ubuntu system, please follow below steps:</STRONG></P> <P class="p1">&nbsp;</P> <P class="p1">1. Adding below line to the&nbsp;<STRONG>/etc/apt/sources.list</STRONG>&nbsp;:</P> <PRE>deb http://security.ubuntu.com/ubuntu focal-security main </PRE> <P>2. Run below commands to update the policy-1 package:</P> <PRE>$sudo apt-get update<BR />$sudo apt-get install policykit-1</PRE> <P class="p1">3. Verify the policykit-1 package has been updated to v.&nbsp;<SPAN>0.105-26ubuntu1.2 as shown in below screen:</SPAN></P> <P class="p1">&nbsp;</P> <P><span class="lia-inline-image-display-wrapper lia-image-align-inline" image-alt="Screen Shot 2022-01-28 at 9.55.32 AM.png" style="width: 400px;"><img src="https://live.paloaltonetworks.com/t5/image/serverpage/image-id/38892i89833EEDE5CE233B/image-size/medium/is-moderation-mode/true?v=v2&amp;px=400" role="button" title="Screen Shot 2022-01-28 at 9.55.32 AM.png" alt="Screen Shot 2022-01-28 at 9.55.32 AM.png" /></span></P> <P>&nbsp;</P> <P><SPAN>Those who can’t patch immediately should use below command&nbsp;</SPAN><SPAN>to remove the SUID-bit from pkexec:</SPAN></P> <P>&nbsp;</P> <PRE>$chmod 0755 /usr/bin/pkexec</PRE> <P>&nbsp;</P> Fri, 28 Jan 2022 18:06:41 GMT https://live.paloaltonetworks.com/t5/expedition-articles/ubuntu-patch-for-cve-2021-4034/ta-p/461834 lychiang 2022-01-28T18:06:41Z