An Ubuntu-specific modification to AccountsService in versions before 0.6.55-0ubuntu13.2, among other earlier versions, improperly dropped the ruid, allowing untrusted users to send signals to AccountService, thus stopping it from handling D-Bus messages in a timely fashion.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: canonical

Published: 2020-11-11T04:10:15.043946Z

Updated: 2024-09-16T17:15:27.923Z

Reserved: 2020-07-29T00:00:00

Link: CVE-2020-16126

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2020-11-11T04:15:12.053

Modified: 2024-11-21T05:06:48.863

Link: CVE-2020-16126

cve-icon Redhat

No data.