PublicDate: 2006-10-10 04:06:00 UTC
Candidate: CVE-2006-5214
References:
 https://ubuntu.com/security/notices/USN-364-1
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-5214
Description:
 Race condition in the Xsession script, as used by X Display Manager (xdm)
 in NetBSD before 20060212, X.Org before 20060225, and Solaris 8 through 10
 before 20061006, causes a user's Xsession errors file to have weak
 permissions before a chmod is performed, which allows local users to read
 Xsession errors files of other users.
Ubuntu-Description:
Notes:
Priority: untriaged
Discovered-by:
Assigned-to:
CVSS:

Bugs:
dapper_xinit: released (1.0.1-0ubuntu3.1)
edgy_xinit: needed
feisty_xinit: needed
dapper_xorg: needed
edgy_xorg: released (7.1.1ubuntu6)
feisty_xorg: released (7.1.1ubuntu6)
devel_xorg: released (7.1.1ubuntu6)
upstream_xinit: needs-triage
upstream_xorg: needs-triage