Is Guix vulnerable to this polkit CVE?

[jbranso]

I just found this article on polkit having a CVE:

https://github.blog/2021-06-10-privilege-escalation-polkit-root-on-linux-with-bug/


It looks pretty nasty...

" The vulnerability enables an unprivileged local user to get a root shell on the system. It’s easy to exploit with a few standard command line tools, as you can see in this short video. In this blog post, I’ll explain how the exploit works and show you where the bug was in the source code. "


In the hacker news comments it is fixed in:
https://news.ycombinator.com/item?id=27462247

Polkit version 0.119 fixes it, here's the diff: https://gitlab.freedesktop.org/polkit/polkit/-/commit/a04d13...


You all awesome devs have probably already fixed it, but I am just emailing to make sure.

Thanks!

Joshua

"Aim for stars...because even if you'll fall at least you'll fall on Uranus."