Описание
lightdm before 0.9.6 writes in .dmrc and Xauthority files using root permissions while the files are in user controlled folders. A local user can overwrite root-owned files via a symlink, which can allow possible privilege escalation.
| Релиз | Статус | Примечание |
|---|---|---|
| devel | not-affected | 1.1.1-0ubuntu4 |
| hardy | DNE | |
| lucid | DNE | |
| maverick | DNE | |
| natty | ignored | end of life |
| oneiric | released | 0.9.5-0ubuntu2 |
| precise | not-affected | 1.1.1-0ubuntu4 |
| quantal | not-affected | 1.1.1-0ubuntu4 |
| upstream | released | 0.9.6-1 |
Показывать по
Ссылки на источники
EPSS
7.2 High
CVSS2
7.8 High
CVSS3
Связанные уязвимости
lightdm before 0.9.6 writes in .dmrc and Xauthority files using root permissions while the files are in user controlled folders. A local user can overwrite root-owned files via a symlink, which can allow possible privilege escalation.
lightdm before 0.9.6 writes in .dmrc and Xauthority files using root p ...
lightdm before 0.9.6 writes in .dmrc and Xauthority files using root permissions while the files are in user controlled folders. A local user can overwrite root-owned files via a symlink, which can allow possible privilege escalation.
EPSS
7.2 High
CVSS2
7.8 High
CVSS3