Vulnerabilities (CVE)

Filtered by vendor Canonical Subscribe
Filtered by product Apt-xapian-index
Total 1 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2013-1064 1 Canonical 2 Apt-xapian-index, Ubuntu Linux 2024-11-21 4.6 MEDIUM N/A
apt-xapian-index before 0.45ubuntu2.1, 0.44ubuntu7.1, and 0.44ubuntu5.1 does not properly use D-Bus for communication with a polkit authority, which allows local users to bypass intended access restrictions by leveraging a PolkitUnixProcess PolkitSubject race condition via a (1) setuid process or (2) pkexec process, a related issue to CVE-2013-4288.