Description
A flaw was found in polkit. A local user can exploit this by providing a specially crafted, excessively long input to the `polkit-agent-helper-1` setuid binary via standard input (stdin). This unbounded input can lead to an out-of-memory (OOM) condition, resulting in a Denial of Service (DoS) for the system.
Published: 2026-03-26
Score: 5.5 Medium
EPSS: < 1% Very Low
KEV: No
Impact: Denial of Service
Action: Immediate Patch
AI Analysis

Impact

The vulnerability resides in polkit’s polkit-agent-helper-1 setuid binary, which reads data from standard input without limiting the input size. A local user can supply a specially crafted, excessively long stream that forces an out‑of‑memory condition, causing the helper process to crash and leading to a denial‑of‑service for the system. The flaw corresponds to resource‑consumption overuse (CWE‑770).

Affected Systems

Red Hat Enterprise Linux releases 6, 7, 8, 9, and 10, as well as Red Hat OpenShift Container Platform 4 are impacted. Installation of the affected packages on these platforms exposes the system to local memory‑exhaustion attacks that can bring services to a halt.

Risk and Exploitability

The CVSS score of 5.5 classifies the issue as moderate severity. No EPSS data or KEV listing is available, indicating that exploitation has not been widely observed yet. The attack vector is local, requiring a user that can execute commands with the privileges of the setuid binary, and the exploit would only cause service disruption without compromising overall system confidentiality or integrity.

Generated by OpenCVE AI on March 26, 2026 at 17:05 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Apply the latest Red Hat security updates that include the polkit patch from the official repositories.
  • Verify the patch has been installed by checking the polkit package version with rpm -qi polkit.
  • Monitor system memory usage and service availability for signs of denial‑of‑service attempts after updates.

Generated by OpenCVE AI on March 26, 2026 at 17:05 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Sat, 28 Mar 2026 03:15:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}

Fri, 27 Mar 2026 08:45:00 +0000

Type Values Removed Values Added
First Time appeared Redhat openshift Container Platform
Vendors & Products Redhat openshift Container Platform

Fri, 27 Mar 2026 04:00:00 +0000

Type Values Removed Values Added
References
Metrics threat_severity

None

 threat_severity

Moderate

Thu, 26 Mar 2026 15:15:00 +0000

Type Values Removed Values Added
Description A flaw was found in polkit. A local user can exploit this by providing a specially crafted, excessively long input to the `polkit-agent-helper-1` setuid binary via standard input (stdin). This unbounded input can lead to an out-of-memory (OOM) condition, resulting in a Denial of Service (DoS) for the system.
Title Polkit: polkit: denial of service via unbounded input processing through standard input
First Time appeared Redhat
Redhat enterprise Linux
Redhat openshift
Weaknesses CWE-770
CPEs cpe:/a:redhat:openshift:4
cpe:/o:redhat:enterprise_linux:10
cpe:/o:redhat:enterprise_linux:6
cpe:/o:redhat:enterprise_linux:7
cpe:/o:redhat:enterprise_linux:8
cpe:/o:redhat:enterprise_linux:9
Vendors & Products Redhat
Redhat enterprise Linux
Redhat openshift
References
Metrics cvssV3_1

{'score': 5.5, 'vector': 'CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H'}

Subscriptions

Redhat Enterprise Linux Openshift Openshift Container Platform
cve-icon MITRE

Status: PUBLISHED

Assigner: redhat

Published:

Updated: 2026-03-28T02:24:10.838Z

Reserved: 2026-03-26T14:27:48.301Z

Link: CVE-2026-4897

cve-icon Vulnrichment

Updated: 2026-03-28T02:24:07.362Z

cve-icon NVD

Status : Received

Published: 2026-03-26T15:16:43.017

Modified: 2026-03-26T15:16:43.017

Link: CVE-2026-4897

cve-icon Redhat

Severity : Moderate

Publid Date: 2026-03-26T12:34:00Z

Links: CVE-2026-4897 - Bugzilla

cve-icon OpenCVE Enrichment

Updated: 2026-03-27T09:26:29Z

Weaknesses