pkexec always assumes there is at least one argument, which can be
exploited by crafting the environment and calling it with no
arguments. No specific exploit has been published.
Update to polkit-0.112-26.el7_9.1.
== testing ==
We just want to see if pkexec stills works.
build and install an iso, then
$ sudo pkexec --user puppet id
Password: # enter sysadmin password
uid=52(puppet) gid=52(puppet) groups=52(puppet)
$
====
Closes-bug: 1960087
Signed-off-by: Joe Slater <joe.slater@windriver.com>
Change-Id: I267e29d90e75dc772e17f0b5866850b4bb5ac3d2
6d7ab17023