cybersecurity

5153 readers

15 users here now

An umbrella community for all things cybersecurity / infosec. News, research, questions, are all welcome!

Community Rules

Be kind
Limit promotional activities
Non-cybersecurity posts should be redirected to other communities within infosec.pub.

Enjoy!

founded 2 years ago

MODERATORS

shellsharks@infosec.pub

tweedge@infosec.pub

Privilege Escalation from lightdm Service User to root in KAuth Helper Service (CVE-2025-62876) (security.opensuse.org)

submitted 3 days ago by cm0002@suppo.fi to c/cybersecurity@infosec.pub

0 comments fedilink hide all child comments

lightdm-kde-greeter is a KDE-themed greeter application for the lightdm display manager. At the beginning of September one of our community packagers asked us to review a D-Bus service contained in lightdm-kde-greeter for addition to openSUSE Tumbleweed.

In the course of the review we found a potential privilege escalation from the lightdm service user to root which is facilitated by this D-Bus service, among some other shortcomings in its implementation.

no comments (yet)

sorted by: hot top controversial new old

there doesn't seem to be anything here