Skip to content

Incomplete privilege drop for com.system76.CosmicGreeter.GetUserData #505332

Description

@nixpkgs-security-tracker

Description

A Privilege Dropping / Lowering Errors/Time-of-check Time-of-use (TOCTOU) Race Condition vulnerability in  cosmic-greeter can allow an attacker to regain privileges that should have been dropped and abuse them in the racy checking logic.

This issue affects cosmic-greeter before https://github.Com/pop-os/cosmic-greeter/pull/426.

Affected packages
  • cosmic-greeter (1.0.0@nixos-25.11, 1.0.8@nixos-unstable)

Additional comment

https://bugzilla.suse.com/show_bug.cgi?id=CVE-2026-25704

Metadata

Metadata

Assignees

No one assigned

    Labels

    1.severity: securityIssues which raise a security issue, or PRs that fix one

    Fields

    No fields configured for issues without a type.

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions