pkexec always assumes there is at least one argument, which can be
exploited by crafting the environment and calling it with no
arguments. No specific exploit has been published.
Update to polkit-0.112-26.el7_9.1.
== testing ==
We just want to see if pkexec stills works.
build and install an iso, then
$ sudo pkexec --user puppet id
Password: # enter sysadmin password
uid=52(puppet) gid=52(puppet) groups=52(puppet)
$
====
Closes-bug: 1960087
Signed-off-by: Joe Slater <joe.slater@windriver.com>
Change-Id: I267e29d90e75dc772e17f0b5866850b4bb5ac3d2