CVE-2016-4982

CVE-2016-4982 describes a race-condition vulnerability in authd where weak permissions on /etc/ident.key allow local users to obtain the key by exploiting a race between key creation and the subsequent chmod protection. The issue is mitigated only by proper access controls and timely file permiss...