A flaw was found in polkit. When processing an XML policy with 32 or more nested elements in depth, an out-of-bounds write can be triggered. This issue can lead to a crash or other unexpected behavior, and arbitrary code execution is not discarded. To exploit this flaw, a high-privilege account is needed as it's required to place the malicious policy file properly.
0.105-180.105-200.105-20ubuntu0.18.04.10.105-20ubuntu0.18.04.40.105-20ubuntu0.18.04.50.105-20ubuntu0.18.04.60.105-26ubuntu10.105-26ubuntu1.10.105-26ubuntu1.20.105-26ubuntu1.30.105-310.105-31.10.105-31ubuntu10.105-320.105-33123-1123-3124-1124-1ubuntu1124-2ubuntu1124-2ubuntu1.24.04.2126-20.105-3ubuntu30.105-4ubuntu10.105-4ubuntu20.105-4ubuntu2.14.04.10.105-4ubuntu3.14.04.10.105-4ubuntu3.14.04.20.105-4ubuntu3.14.04.50.105-4ubuntu3.14.04.60.105-4ubuntu3.14.04.6+esm10.105-11ubuntu20.105-130.105-13ubuntu10.105-140.105-14.10.105-14.1ubuntu0.10.105-14.1ubuntu0.40.105-14.1ubuntu0.50.105-14.1ubuntu0.5+esm1Exploitability
AV:LAC:LPR:HUI:NScope
S:UImpact
C:HI:HA:HCVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H