Logo
-

Byte Open Security

(ByteOS Network)

Log In

Sign Up

ByteOS

Security
Vulnerability Details
Registries
Custom Views
Weaknesses
Attack Patterns
Filters & Tools
NVD Vulnerability Details :
CVE-2013-1064
Deferred
More InfoOfficial Page
Source-security@ubuntu.com
View Known Exploited Vulnerability (KEV) details
Published At-03 Oct, 2013 | 21:55
Updated At-11 Apr, 2025 | 00:51

apt-xapian-index before 0.45ubuntu2.1, 0.44ubuntu7.1, and 0.44ubuntu5.1 does not properly use D-Bus for communication with a polkit authority, which allows local users to bypass intended access restrictions by leveraging a PolkitUnixProcess PolkitSubject race condition via a (1) setuid process or (2) pkexec process, a related issue to CVE-2013-4288.

CISA Catalog
Date AddedDue DateVulnerability NameRequired Action
N/A
Metrics
TypeVersionBase scoreBase severityVector
Primary2.04.6MEDIUM
AV:L/AC:L/Au:N/C:P/I:P/A:P
CPE Matches

Canonical Ltd.
canonical
>>apt-xapian-index>>Versions from 0.45ubuntu1(inclusive) to 0.45ubuntu2.1(exclusive)
cpe:2.3:a:canonical:apt-xapian-index:*:*:*:*:*:*:*:*
Canonical Ltd.
canonical
>>apt-xapian-index>>0.44ubuntu5.1
cpe:2.3:a:canonical:apt-xapian-index:0.44ubuntu5.1:*:*:*:*:*:*:*
Canonical Ltd.
canonical
>>apt-xapian-index>>0.44ubuntu7.1
cpe:2.3:a:canonical:apt-xapian-index:0.44ubuntu7.1:*:*:*:*:*:*:*
Canonical Ltd.
canonical
>>ubuntu_linux>>12.04
cpe:2.3:o:canonical:ubuntu_linux:12.04:*:*:*:lts:*:*:*
Canonical Ltd.
canonical
>>ubuntu_linux>>12.10
cpe:2.3:o:canonical:ubuntu_linux:12.10:*:*:*:*:*:*:*
Canonical Ltd.
canonical
>>ubuntu_linux>>13.04
cpe:2.3:o:canonical:ubuntu_linux:13.04:*:*:*:*:*:*:*
Weaknesses
CWE IDTypeSource
CWE-264Primarynvd@nist.gov
Evaluator Description

Evaluator Impact

Evaluator Solution

Vendor Statements

References
HyperlinkSourceResource
http://secunia.com/advisories/54914security@ubuntu.com
Vendor Advisory
http://www.ubuntu.com/usn/USN-1955-1security@ubuntu.com
Vendor Advisory
https://launchpad.net/ubuntu/+source/apt-xapian-index/0.44ubuntu5.1security@ubuntu.com
Patch
https://launchpad.net/ubuntu/+source/apt-xapian-index/0.44ubuntu7.1security@ubuntu.com
Patch
https://launchpad.net/ubuntu/+source/apt-xapian-index/0.45ubuntu2.1security@ubuntu.com
Patch
http://secunia.com/advisories/54914af854a3a-2127-422b-91ae-364da2661108
Vendor Advisory
http://www.ubuntu.com/usn/USN-1955-1af854a3a-2127-422b-91ae-364da2661108
Vendor Advisory
https://launchpad.net/ubuntu/+source/apt-xapian-index/0.44ubuntu5.1af854a3a-2127-422b-91ae-364da2661108
Patch
https://launchpad.net/ubuntu/+source/apt-xapian-index/0.44ubuntu7.1af854a3a-2127-422b-91ae-364da2661108
Patch
https://launchpad.net/ubuntu/+source/apt-xapian-index/0.45ubuntu2.1af854a3a-2127-422b-91ae-364da2661108
Patch
Change History
0Changes found

Details not found