Your submission was sent successfully! Close

CVE-2006-5214

Published: 10 October 2006

Race condition in the Xsession script, as used by X Display Manager (xdm) in NetBSD before 20060212, X.Org before 20060225, and Solaris 8 through 10 before 20061006, causes a user's Xsession errors file to have weak permissions before a chmod is performed, which allows local users to read Xsession errors files of other users.

Priority

Unknown

Status

Package Release Status
xinit
Launchpad, Ubuntu, Debian
dapper
Released (1.0.1-0ubuntu3.1)
edgy Needed

feisty Needed

upstream Needs triage

xorg
Launchpad, Ubuntu, Debian
dapper Needed

edgy
Released (7.1.1ubuntu6)
feisty
Released (7.1.1ubuntu6)
upstream Needs triage