CVE-2013-4169

medium

Published 2013-09-10 · Modified 2026-04-29

CVSS v3

—

CVSS v2

6.9

VIR risk

6.9

Description

GNOME Display Manager (gdm) before 2.21.1 allows local users to change permissions of arbitrary directories via a symlink attack on /tmp/.X11-unix/.

Predictions

Exploit likelihood

20%

Patch ETA

—

Heuristic predictions, AS-IS, for prioritization only.

Mitigations

vendor Authored 2026-05-27

Vendor advisory: debian — https://security-tracker.debian.org/tracker/CVE-2013-4169

vendor Authored 2026-05-27

Vendor advisory: secalert@redhat.com — https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=988498

vendor Authored 2026-05-27

Vendor advisory: secalert@redhat.com — http://secunia.com/advisories/54661

vendor Authored 2026-05-27

Vendor advisory: secalert@redhat.com — http://rhn.redhat.com/errata/RHSA-2013-1213.html

OS impact

OS	Version	Status	Fixed in
debian	bookworm	fixed	`0`
debian	bullseye	fixed	`0`
debian	forky	fixed	`0`
debian	sid	fixed	`0`
debian	trixie	fixed	`0`

Application impact

Vendor	Product	Versions
gnome	gnome_display_manager	`{"endIncluding":"2.21"}`
gnome	gnome_display_manager	`0.7`
gnome	gnome_display_manager	`1.0`
gnome	gnome_display_manager	`2.0`
gnome	gnome_display_manager	`2.2`
gnome	gnome_display_manager	`2.13`
gnome	gnome_display_manager	`2.14`
gnome	gnome_display_manager	`2.14.1`
gnome	gnome_display_manager	`2.14.2`
gnome	gnome_display_manager	`2.14.3`
gnome	gnome_display_manager	`2.14.4`
gnome	gnome_display_manager	`2.14.5`
gnome	gnome_display_manager	`2.14.6`
gnome	gnome_display_manager	`2.14.7`
gnome	gnome_display_manager	`2.14.8`
gnome	gnome_display_manager	`2.14.9`
gnome	gnome_display_manager	`2.14.10`
gnome	gnome_display_manager	`2.14.11`
gnome	gnome_display_manager	`2.14.12`
gnome	gnome_display_manager	`2.15`
gnome	gnome_display_manager	`2.16`
gnome	gnome_display_manager	`2.16.1`
gnome	gnome_display_manager	`2.16.2`
gnome	gnome_display_manager	`2.17`
gnome	gnome_display_manager	`2.18`
gnome	gnome_display_manager	`2.18.1`
gnome	gnome_display_manager	`2.18.2`
gnome	gnome_display_manager	`2.18.3`
gnome	gnome_display_manager	`2.19`
gnome	gnome_display_manager	`2.19.1`
gnome	gnome_display_manager	`2.19.2`
gnome	gnome_display_manager	`2.19.3`
gnome	gnome_display_manager	`2.19.4`
gnome	gnome_display_manager	`2.20.0`
gnome	gnome_display_manager	`2.20.1`
gnome	gnome_display_manager	`2.20.2`
gnome	gnome_display_manager	`2.20.3`
gnome	gnome_display_manager	`2.20.4`
gnome	gnome_display_manager	`2.20.5`
gnome	gnome_display_manager	`2.20.6`
gnome	gnome_display_manager	`2.20.7`
gnome	gnome_display_manager	`2.20.8`
gnome	gnome_display_manager	`2.20.9`
gnome	gnome_display_manager	`2.20.10`

References

CWEs

CWE-59

Verify integrity in audit chain (admin only). AS-IS.