PolicyKit Grant Helper Password Handling Local Format String Vulnerability

PolicyKit Grant Helper Password Handling Local Format String Vulnerability

References:

Bug#: 15295 format string vulnerability in password input (freedesktop.org)
fix for CVE-2008-1658: format string vulnerability in password input (freedesktop.org)
policykit or policykit-gnome do not work with passwords containing % character (Launchpad)
PolicyKit Summary Page (freedesktop.org)
Bugzilla Bug 439982: CVE-2008-1658 PolicyKit: format string vulnerability (Red Hat)

Privacy Statement
Copyright 2010, SecurityFocus