CVE-2012-0871
published 2014-04-18CVE-2012-0871: The session_link_x11_socket function in login/logind-session.c in systemd-logind in systemd, possibly 37 and earlier, allows local users to create or overwrite…
medium6.3CVSS 3.1
AVLACMAuNCNICAC
The session_link_x11_socket function in login/logind-session.c in systemd-logind in systemd, possibly 37 and earlier, allows local users to create or overwrite arbitrary files via a symlink attack on the X11 user directory in /run/user/.
Affected
43 ranges· showing 25
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | systemd | < systemd 43-1 (bookworm) | systemd 43-1 (bookworm) |
| opensuse | opensuse | — | — |
| systemd_project | systemd | <= 037 | — |
| systemd_project | systemd | — | — |
| systemd_project | systemd | — | — |
| systemd_project | systemd | — | — |
| systemd_project | systemd | — | — |
| systemd_project | systemd | — | — |
| systemd_project | systemd | — | — |
| systemd_project | systemd | — | — |
| systemd_project | systemd | — | — |
| systemd_project | systemd | — | — |
| systemd_project | systemd | — | — |
| systemd_project | systemd | — | — |
| systemd_project | systemd | — | — |
| systemd_project | systemd | — | — |
| systemd_project | systemd | — | — |
| systemd_project | systemd | — | — |
| systemd_project | systemd | — | — |
| systemd_project | systemd | — | — |
| systemd_project | systemd | — | — |
| systemd_project | systemd | — | — |
| systemd_project | systemd | — | — |
| systemd_project | systemd | — | — |
| systemd_project | systemd | — | — |
CVSS provenance
nvd6.3MEDIUMAV:L/AC:M/Au:N/C:N/I:C/A:C
osv6.3MEDIUM