Update 1_system_information.sh

Fix false positive, Ubuntu fixed it one day earlier: policykit-1 (0.105-20ubuntu0.18.04.6) bionic-security; urgency=medium * SECURITY UPDATE: Local Privilege Escalation in pkexec - debian/patches/CVE-2021-4034.patch: properly handle command-line arguments in src/programs/pkcheck.c, src/programs/pkexec.c. - CVE-2021-4034 -- Marc Deslauriers <email address hidden> Wed, 12 Jan 2022 07:34:00 -0500
2022-11-21 15:17:28 +01:00 · 2022-11-21 15:17:28 +01:00 · 0ab4a65bab
commit 0ab4a65bab
parent 27d954e03a
1 changed files with 1 additions and 1 deletions
--- a/linPEAS/builder/linpeas_parts/1_system_information.sh
+++ b/linPEAS/builder/linpeas_parts/1_system_information.sh
@ -25,7 +25,7 @@ echo ""
 print_2title "CVEs Check"

 #-- SY) CVE-2021-4034
-if [ `command -v pkexec` ] && stat -c '%a' $(which pkexec) | grep -q 4755 && [ "$(stat -c '%Y' $(which pkexec))" -lt "1642035600" ]; then 
+if [ `command -v pkexec` ] && stat -c '%a' $(which pkexec) | grep -q 4755 && [ "$(stat -c '%Y' $(which pkexec))" -lt "1641942000" ]; then 
    echo "Vulnerable to CVE-2021-4034" | sed -${E} "s,.*,${SED_RED_YELLOW},"
    echo ""
 fi