CVE-2026-4897

EUVD-2026-16214
A flaw was found in polkit. A local user can exploit this by providing a specially crafted, excessively long input to the `polkit-agent-helper-1` setuid binary via standard input (stdin). This unbounded input can lead to an out-of-memory (OOM) condition, resulting in a Denial of Service (DoS) for the system.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
5.5 MEDIUM
LOCAL
LOW
LOW
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Base Score
CVSS 3.x
EPSS Score
Percentile: 3%
Affected Products (NVD)
VendorProductVersion
freedesktoppolkit
-
redhatopenshift_container_platform
4.0
redhatenterprise_linux
6.0
redhatenterprise_linux
7.0
redhatenterprise_linux
8.0
redhatenterprise_linux
9.0
redhatenterprise_linux
10.0
𝑥
= Vulnerable software versions
Debian logo
Debian Releases
Debian Product
Codename
policykit-1
bookworm
no-dsa
bullseye
vulnerable
bullseye (security)
0.105-31+deb11u2
fixed
forky
127-3
fixed
sid
127-3
fixed
trixie
no-dsa
openSUSE logo
openSUSE / SLES Releases
openSUSE Product
Release
libpolkit-agent-1-0-121
suse enterprise desktop 15 SP7
150500.3.11.1
fixed
suse enterprise sap 15 SP7
150500.3.11.1
fixed
suse enterprise server 15 SP7
150500.3.11.1
fixed
libpolkit-gobject-1-0-121
suse enterprise desktop 15 SP7
150500.3.11.1
fixed
suse enterprise sap 15 SP7
150500.3.11.1
fixed
suse enterprise server 15 SP7
150500.3.11.1
fixed
libpolkit0
suse enterprise server 12 SP3
0.113-5.35.1
fixed
suse enterprise server 15 SP4
0.116-150200.3.18.1
fixed
pkexec-121
suse enterprise desktop 15 SP7
150500.3.11.1
fixed
suse enterprise sap 15 SP7
150500.3.11.1
fixed
suse enterprise server 15 SP7
150500.3.11.1
fixed
polkit
suse enterprise server 12 SP3
0.113-5.35.1
fixed
suse enterprise server 15 SP4
0.116-150200.3.18.1
fixed
polkit-121
suse enterprise desktop 15 SP7
150500.3.11.1
fixed
suse enterprise sap 15 SP7
150500.3.11.1
fixed
suse enterprise server 15 SP7
150500.3.11.1
fixed
polkit-devel
suse enterprise server 15 SP4
0.116-150200.3.18.1
fixed
polkit-devel-121
suse enterprise desktop 15 SP7
150500.3.11.1
fixed
suse enterprise sap 15 SP7
150500.3.11.1
fixed
suse enterprise server 15 SP7
150500.3.11.1
fixed
typelib-1_0-Polkit-1_0
suse enterprise server 12 SP3
0.113-5.35.1
fixed
suse enterprise server 15 SP4
0.116-150200.3.18.1
fixed
typelib-1_0-Polkit-1_0-121
suse enterprise desktop 15 SP7
150500.3.11.1
fixed
suse enterprise sap 15 SP7
150500.3.11.1
fixed
suse enterprise server 15 SP7
150500.3.11.1
fixed
Amazon Linux logo
Amazon Linux Releases
Amazon Package
Release
polkit
Amazon Linux 2023
0:125-1.amzn2023.0.3
fixed
polkit-debuginfo
Amazon Linux 2023
0:125-1.amzn2023.0.3
fixed
polkit-debugsource
Amazon Linux 2023
0:125-1.amzn2023.0.3
fixed
polkit-devel
Amazon Linux 2023
0:125-1.amzn2023.0.3
fixed
polkit-docs
Amazon Linux 2023
0:125-1.amzn2023.0.3
fixed
polkit-libs
Amazon Linux 2023
0:125-1.amzn2023.0.3
fixed
polkit-libs-debuginfo
Amazon Linux 2023
0:125-1.amzn2023.0.3
fixed
Azure Linux logo
Azure Linux Releases
Azure Package
Release
polkit
Azure Linux 3.0
0:123-4.azl3
fixed
Common Weakness Enumeration
References
https://access.redhat.com/security/cve/CVE-2026-4897
https://bugzilla.redhat.com/show_bug.cgi?id=2451739