Tag
polkit
Safeguard articles tagged "polkit" — guides, analysis, and best practices for software supply chain and application security.
3 articles
Vulnerability Analysis
PwnKit (CVE-2021-4034) Explained: Root From a 12-Year-Old Polkit Bug
CVE-2021-4034, aka PwnKit, is a memory-corruption flaw in polkit's pkexec that gives any local user reliable root on nearly every Linux distribution. Here is how it works and how to close it.
Jul 1, 20265 min read
Vulnerability Analysis
PwnKit Five Years On: Why CVE-2021-4034 Still Lives in Production
PwnKit was a trivial local privilege escalation in polkit that affected nearly every Linux distribution for over a decade. The technical details and the residual risk in 2026.
Feb 3, 20265 min read
Vulnerability Analysis
PwnKit polkit pkexec local privilege escalation (CVE-2021-4034)
PwnKit (CVE-2021-4034) is a 12-year-old polkit pkexec flaw giving any local user instant root on most Linux distros. Here's the full breakdown and fix.
Jan 7, 20267 min read