** Changed in: lightdm/1.22
Status: Triaged => Fix Released
--
You received this bug notification because you are a member of Desktop
Packages, which is subscribed to lightdm in Ubuntu.
https://bugs.launchpad.net/bugs/1677924
Title:
Local privilege escalation via guest user login
Status in Light Display Manager:
Fix Released
Status in Light Display Manager 1.18 series:
Fix Released
Status in Light Display Manager 1.20 series:
Fix Released
Status in Light Display Manager 1.22 series:
Fix Released
Status in lightdm package in Ubuntu:
Triaged
Status in lightdm source package in Xenial:
Fix Released
Status in lightdm source package in Yakkety:
Fix Released
Status in lightdm source package in Zesty:
Triaged
Bug description:
It was discovered that a local attacker could watch for lightdm's
guest-account script to create a /tmp/guest-XXXXXX file and then quickly
create
the lowercase representation of the guest user's home directory before lightdm
could. This allowed the attacker to have control of the guest user's home
directory and, subsequently, gain control of an arbitrary directory in the
filesystem which could lead to privilege escalation.
To manage notifications about this bug go to:
https://bugs.launchpad.net/lightdm/+bug/1677924/+subscriptions
--
Mailing list: https://launchpad.net/~desktop-packages
Post to : desktop-packages@lists.launchpad.net
Unsubscribe : https://launchpad.net/~desktop-packages
More help : https://help.launchpad.net/ListHelp
