VOOZH about

URL: https://repost.aws/questions/QUUYRn7BFETdmIRN7NtaVE8w/is-aws-linux-linux-2-vulnerable-to-cve-2021-4034

⇱ Is AWS Linux / Linux 2 vulnerable to CVE-2021-4034? | AWS re:Post

Skip to content

Is AWS Linux / Linux 2 vulnerable to CVE-2021-4034?

2

I noticed that our AWS Linux installations do not have 'pkexec', does it mean that they are not vulnerable? if it is anyway (e.g. pkexec could have been renamed).. appreciate mitigation procedures. thanks

Topics
Compute
Language
English

asked 4 years ago862 views

1 Answer
  • Newest
  • Most votes
  • Most comments
1

I have not been able to confirm the use of pkexec in Amazon Linux AMIs.

But here is a mitigation: A temporary mitigation for operating systems that have yet to push a patch is to strip pkexec of the read/write rights with the following command: chmod 0755 /usr/bin/pkexec

Source: https://www.bleepingcomputer.com/news/security/linux-system-service-bug-gives-root-on-all-major-distros-exploit-released/

answered 4 years ago

Relevant content