Unrated severityNVD Advisory· Published Apr 25, 2006· Updated Apr 16, 2026
CVE-2006-1057
CVE-2006-1057
Description
Race condition in daemon/slave.c in gdm before 2.14.1 allows local users to gain privileges via a symlink attack when gdm performs chown and chgrp operations on the .ICEauthority file.
Affected products
1- cpe:2.3:a:gnome:gdm:2.14:*:*:*:*:*:*:*
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
11- www.debian.org/security/2006/dsa-1040nvdPatchVendor Advisory
- www.redhat.com/archives/fedora-announce-list/2006-April/msg00160.htmlnvdPatch
- www.vupen.com/english/advisories/2006/1465nvdVendor Advisory
- cvs.gnome.org/viewcvs/gdm2/daemon/slave.cnvd
- www.mandriva.com/security/advisoriesnvd
- www.redhat.com/support/errata/RHSA-2007-0286.htmlnvd
- www.securityfocus.com/bid/17635nvd
- bugzilla.redhat.com/bugzilla/show_bug.cginvd
- exchange.xforce.ibmcloud.com/vulnerabilities/26092nvd
- oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10092nvd
- usn.ubuntu.com/278-1/nvd
News mentions
0No linked articles in our index yet.