Red Hat Bugzilla – Bug 987561
CVE-2013-4161 gksu-polkit: improper patching of CVE-2012-5617
Last modified: 2015-07-31 06:54:01 EDT
It was found that the patch to correct CVE-2012-5617 (bug #883162) was improperly applied, so the vulnerability described by CVE-2012-5617 was never really fixed.
As a result, gksu-polkit-0.0.3-6.fc18 was reported as fixing the issue, however it did not. Similarly, the version in Fedora 19 is still vulnerable to this flaw.
Created gksu-polkit tracking bugs for this issue:
Affects: fedora-all [bug 987562]
gksu-polkit-0.0.3-8.gitf8ce834c.fc19 has been pushed to the Fedora 19 stable repository. If problems still persist, please make note of it in this bug report.
gksu-polkit-0.0.3-8.gitf8ce834c.fc18 has been pushed to the Fedora 18 stable repository. If problems still persist, please make note of it in this bug report.