Update 1 on Polkit CVE-2021-4034
Published: 1/26/2022, Last Updated: 1/26/2022 1:18 PM EST
Cambridge Semantics is monitoring activities related to the resolution of CVE-2021-4034 in the Polkit package for Red Hat Enterprise Linux and CentOS 7. This vulnerability affects all bare metal and VM installations of Linux.
Cambridge Semantics does not ship the affected component, Polkit (rpm), in our products, installers, or container images. However, a typical full OS installation does include the critical package, and the OS needs to be mitigated as soon as possible. To update the package on RHEL/CentOS 7 based systems, you can run the following command:
sudo yum --enablerepo=csi* update polkit*