1. Fixed security vulnerabilities

CVE-2021-3560

Description: policykit-1 is a system service installed by default on openKylin. This vulnerability enables an unprivileged local user to gain root privileges on the system.

2. Affected software packages

policykit-1 <= 0.105-ok2

3. Software package repair version

policykit-1 >= 0.105-ok3

4. Repair method

Method 1: Configure the openKylin software source (mirroring the source configured by default)

deb http://archive.build.openkylin.top/openkylin/ yangtze main cross pty

deb http://archive.build.openkylin.top/openkylin/ yangtze-security main cross pty

deb http://archive.build.openkylin.top/openkylin/ yangtze-updates main cross pty

After the configuration is complete, execute the command to update the software package:

sudo apt update

sudo apt install policykit-1

Method 2: Download the software package from the software package download address and install it

sudo dpkg -i policykit-1_0.105-ok3_amd64.deb

5. Software package download address

https://translate.google.com/website?sl=zh-CN&tl=en&hl=zh-CN&client=webapp&u=http://archive.build.openkylin.top/openkylin/pool/main/p/policykit-1/policykit-1_0.105-ok3_amd64.deb

6. Repair verification

Use the software package query command to check whether the version of the relevant software package is consistent with the repaired version. If the versions are the same, the repair is successful.

dpkg -l policykit-1