SWHKD 1.1.5 unsafely uses the /tmp/swhks.pid pathname. There can be data loss or a denial of service.
The product attempts to access a file based on the filename, but it does not properly prevent that filename from identifying a link or shortcut that resolves to an unintended resource.
Link | Tags |
---|---|
https://github.com/waycrate/swhkd/releases | third party advisory release notes |
https://github.com/waycrate/swhkd/commit/0b620a09605afb815c6d8d8953bbb7a10a8c0575 | third party advisory patch |
http://www.openwall.com/lists/oss-security/2022/04/14/1 | mailing list patch exploit third party advisory |