A flaw was found in PolicyKit that allows a user with a uid greater than INT_MAX to successfully execute any elevated command without asking for password

@eskuero given that polkit has a javascript engine embedded in it, I'm not even surprised

Sign in to participate in the conversation

We are a cute and loving international community O(≧▽≦)O !