CVE-2014-1624
The CVE-2014-1624 issue affects python-xdg 0.25 and is a TOCTOU race condition in get_runtime_dir that can enable local users to overwrite arbitrary files by pre-creating a temp path and then replacing it with a symlink to an attacker-controlled location. Public entries confirm the vulnerable com...