What the vulnerability does

01Description

In Keylime before 6.3.0, Revocation Notifier uses a fixed /tmp path for UNIX domain socket which can allow unprivileged users a method to prohibit keylime operations.

Key dates

02Disclosure timeline

September 21, 2022 CVE published
May 27, 2025 Record updated

Related vulnerabilities

04Related CVE