Skip Navigation

Linux @programming.dev

ikidd @lemmy.world

2mo ago

New Linux Flaws Enable Full Root Access via PAM and Udisks Across Major Distributions

thehackernews.com

Just a moment...

Linux @sh.itjust.works

cm0002 @lemmy.world

2mo ago

New Linux Flaws Enable Full Root Access via PAM and Udisks Across Major Distributions

thehackernews.com /2025/06/new-linux-flaws-enable-full-root-access.html

Linux @lemmy.ml

ikidd @lemmy.world

2mo ago

New Linux Flaws Enable Full Root Access via PAM and Udisks Across Major Distributions

thehackernews.com /2025/06/new-linux-flaws-enable-full-root-access.html

4 comments

Would implementing something like this prevent this problem?
https://discussion.fedoraproject.org/t/securing-fedora-with-fido2-utrust-full-disk-luks-gui-login-and-sudo-authentication/154136
- That is a setup guide for hardware key and passkey auth. It is not a hardening guide, and does nothing to mitigate these LPE vulns.
  
  Thank you. That's what I wanted to know.
- This is said in the article:
  To mitigate the risk posed by these flaws, it's essential to apply patches provided by the Linux distribution vendors. As temporary workarounds, users can modify the Polkit rule for "org.freedesktop.udisks2.modify-device" to require administrator authentication ("auth_admin").