SWHKD 1.1.5 unsafely uses the /tmp/swhkd.pid pathname. There can be an information leak or denial of service.
References
Link | Resource |
---|---|
http://www.openwall.com/lists/oss-security/2022/04/14/1 | Exploit Mailing List Patch Third Party Advisory |
https://github.com/waycrate/swhkd/commit/e661a4940df78fbb7b52c622ac4ae6a3a7f7d8aa | Patch Third Party Advisory |
https://github.com/waycrate/swhkd/releases | Release Notes Third Party Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2022-03-29T23:21:34
Updated: 2022-04-14T11:06:13
Reserved: 2022-03-24T00:00:00
Link: CVE-2022-27815
JSON object: View
NVD Information
Status : Analyzed
Published: 2022-03-30T00:15:09.540
Modified: 2022-10-06T16:01:40.537
Link: CVE-2022-27815
JSON object: View
Redhat Information
No data.
CWE