On December 17, 2014 Alert Logic reported a potentially serious Linux vulnerability that was quickly dubbed the “Grinch”. Green Rocket began investigating the nature of the vulnerability, and has concluded there is no threat. As reported by Red Hat and in a great article at threat stack, this is actually a designed feature of PolicyKit, and is tightly controlled.