VULHUB ™

A possible race condition vulnerability exists in the xauth program, used to edit and display the authorization information used in connecting to the X server. The error occurs when xauth writes temporary authorization files. If exploited succesfully, it may be possible for a malicious local user to symbolically link this temporary file to any file owned by the user running xauth. This may allow sensitive data to be overwritten, in some situations leading to a denial of service or enabling system compromise if the user can control the file contents.

A possible race condition vulnerability exists in the xauth program, used to edit and display the authorization information used in connecting to the X server. The error occurs when xauth writes temporary authorization files. If exploited succesfully, it may be possible for a malicious local user to symbolically link this temporary file to any file owned by the user running xauth. This may allow sensitive data to be overwritten, in some situations leading to a denial of service or enabling system compromise if the user can control the file contents.