Описание
Simple Desktop Display Manager (SDDM) before 0.10.0 allows local users to gain root privileges because code running as root performs write operations within a user home directory, and this user may have created links in advance (exploitation requires the user to win a race condition in the ~/.Xauthority chown case, but not other cases).
Пакеты
| Пакет | Статус | Версия исправления | Релиз | Тип |
|---|---|---|---|---|
| sddm | fixed | 0.11.0-1 | experimental | package |
| sddm | fixed | 0.11.0-2 | package |
Примечания
https://bugzilla.suse.com/show_bug.cgi?id=897788
EPSS
Связанные уязвимости
Simple Desktop Display Manager (SDDM) before 0.10.0 allows local users to gain root privileges because code running as root performs write operations within a user home directory, and this user may have created links in advance (exploitation requires the user to win a race condition in the ~/.Xauthority chown case, but not other cases).
Simple Desktop Display Manager (SDDM) before 0.10.0 allows local users to gain root privileges because code running as root performs write operations within a user home directory, and this user may have created links in advance (exploitation requires the user to win a race condition in the ~/.Xauthority chown case, but not other cases).
Уязвимость экранного менеджера Simple Desktop Display Manager операционной системы Fedora, позволяющая нарушителю получить привилегии root
EPSS