Is AWS Linux / Linux 2 vulnerable to CVE-2021-4034?

2

I noticed that our AWS Linux installations do not have 'pkexec', does it mean that they are not vulnerable? if it is anyway (e.g. pkexec could have been renamed).. appreciate mitigation procedures. thanks

Topics

Tags

Language

English

asked 2 years ago571 views

1 Answer

Newest
Most votes
Most comments

1

I have not been able to confirm the use of pkexec in Amazon Linux AMIs.

But here is a mitigation: A temporary mitigation for operating systems that have yet to push a patch is to strip pkexec of the read/write rights with the following command: chmod 0755 /usr/bin/pkexec

Source: https://www.bleepingcomputer.com/news/security/linux-system-service-bug-gives-root-on-all-major-distros-exploit-released/

answered 2 years ago

Relevant content

ECS-optimized Amazon Linux 2 latest AMI does have fix for the latest vulnerable CVE-2022-0847?
AWS-User-1886407
asked 2 years ago
Linux 2 OpenSSH Failing Vulnerability Scan
AE-MLW
asked 2 years ago
Is there antivirus software recommended to install AWS Linux 2 system?
AWS-User-8659975
asked 2 years ago
Trying to patch a vulnerability and understand OpenSSL versions in Amazon Linux 2
rePoster-111111
asked 2 years ago
Why is my Linux instance not booting after I changed its type to a Nitro-based instance type?
AWS OFFICIALUpdated 2 years ago
How do I install a GUI on my Amazon EC2 instance running Amazon Linux 2?
AWS OFFICIALUpdated 2 years ago
What are best practices to secure my Linux server that's running on Lightsail?
AWS OFFICIALUpdated 3 months ago
How can I update yum or install packages without internet access on my EC2 instances running Amazon Linux 1, Amazon Linux 2, or Amazon Linux 2023?
AWS OFFICIALUpdated a year ago
Installing Python Package TensorFlow on Amazon Linux 2023 for Graviton
EXPERT
iBehr
published 3 days ago
Installing Python Package GeoPandas on Amazon Linux 2023 for Graviton
EXPERT
iBehr
published 2 months ago