78 matches found
[SECURITY] Fedora 44 Update: plasma-login-manager-6.6.4-1.fc44
Plasma Login provides a display manager for KDE Plasma and with an new frontend providing a greeter, wallpaper plugin integration and a System Settings module KCM...
CVE-2026-25704
A flaw was found in cosmic-greeter. This vulnerability is a Time-of-check Time-of-use TOCTOU race condition, which occurs when an application checks for a condition and then uses the result of that check, but the condition changes between the check and the use. A local attacker can exploit this...
EUVD-2026-17067
A Privilege Dropping / Lowering Errors/Time-of-check Time-of-use TOCTOU Race Condition vulnerability in cosmic-greeter can allow an attacker to regain privileges that should have been dropped and abuse them in the racy checking logic. This issue affects cosmic-greeter before...
CVE-2026-25704
A Privilege Dropping / Lowering Errors/Time-of-check Time-of-use TOCTOU Race Condition vulnerability in cosmic-greeter can allow an attacker to regain privileges that should have been dropped and abuse them in the racy checking logic. This issue affects cosmic-greeter before...
CVE-2026-25704
A Privilege Dropping / Lowering Errors/Time-of-check Time-of-use TOCTOU Race Condition vulnerability in cosmic-greeter can allow an attacker to regain privileges that should have been dropped and abuse them in the racy checking logic. This issue affects cosmic-greeter before...
CVE-2026-25704 Incomplete privilege drop for com.system76.CosmicGreeter.GetUserData
A Privilege Dropping / Lowering Errors/Time-of-check Time-of-use TOCTOU Race Condition vulnerability in cosmic-greeter can allow an attacker to regain privileges that should have been dropped and abuse them in the racy checking logic. This issue affects cosmic-greeter before...
CVE-2026-25704
The CVE-2026-25704 entry concerns cosmic-greeter and describes a TOCTOU race condition that can allow a local attacker to regain privileges that should have been dropped due to incomplete privilege dropping in the GetUserData flow. Multiple connected feeds corroborate that the issue affects cosmi...
CVE-2026-25704 Incomplete privilege drop for com.system76.CosmicGreeter.GetUserData
A Privilege Dropping / Lowering Errors/Time-of-check Time-of-use TOCTOU Race Condition vulnerability in cosmic-greeter can allow an attacker to regain privileges that should have been dropped and abuse them in the racy checking logic. This issue affects cosmic-greeter before...
cosmic-greeter 安全漏洞
Cosmic-Greeter is a login manager open source from Pop!OS. Cosmic-Greeter has a security vulnerability, which stems from privilege disposal or reduction errors, as well as race conditions. This could allow attackers to reacquire discarded privileges and exploit the competing check logic...
PT-2026-28805
Name of the Vulnerable Software and Affected Versions cosmic-greeter versions prior to https://github.Com/pop-os/cosmic-greeter/pull/426 Description A Time-of-check Time-of-use TOCTOU race condition exists in cosmic-greeter. This condition can allow an attacker to regain privileges that should ha...
[SECURITY] Fedora 42 Update: tuigreet-0.9.1-7.fc42
Graphical console greeter for greetd...
[SECURITY] Fedora 43 Update: tuigreet-0.9.1-7.fc43
Graphical console greeter for greetd...
Malicious code in greeter-pro-test (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 14dfc4441f09da7c2365f0bda8f0406dfbba98c6c127d94689f8acbbb0dafbed Installing the package or importing the module exfiltrates basic information about the host, and the package has no other purpose. --- Category: PROBABLYPENTES...
MAL-2026-766 Malicious code in greeter-pro-test (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 14dfc4441f09da7c2365f0bda8f0406dfbba98c6c127d94689f8acbbb0dafbed Installing the package or importing the module exfiltrates basic information about the host, and the package has no other purpose. --- Category: PROBABLYPENTES...
lightdm-kde-greeter-6.0.5-1.1 on GA media (moderate)
lightdm-kde-greeter-6.0.5-1.1 on GA media Announcement ID: openSUSE-SU-2025:15788-1 Rating: moderate Cross-References: CVE-2025-62876 Affected Products: openSUSE Tumbleweed An update that solves one vulnerability can now be installed. Description: These are all security issues fixed in the...
OPENSUSE-SU-2025:15788-1 lightdm-kde-greeter-6.0.5-1.1 on GA media
These are all security issues fixed in the lightdm-kde-greeter-6.0.5-1.1 package on the GA media of openSUSE Tumbleweed...
FreeBSD : lightdm-kde-greeter -- Privilege Escalation from lightdm Service User to root (2063f110-c0b8-11f0-a633-8c164580114f)
The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the 2063f110-c0b8-11f0-a633-8c164580114f advisory. SUSE Security Team reports: A Execution with Unnecessary Privileges vulnerability in lightdm-kde-greete...
CVE-2025-62876
A Execution with Unnecessary Privileges vulnerability in lightdm-kde-greeter allows escalation from the service user to root.This issue affects lightdm-kde-greeter. before 6.0.4...
EUVD-2025-131905
A Execution with Unnecessary Privileges vulnerability in lightdm-kde-greeter allows escalation from the service user to root.This issue affects lightdm-kde-greeter. before 6.0.4...
CVE-2025-62876
A Execution with Unnecessary Privileges vulnerability in lightdm-kde-greeter allows escalation from the service user to root.This issue affects lightdm-kde-greeter. before 6.0.4...