This page collects WhisperX intelligence signals tagged #TOCTOU. It is designed for humans, search engines, and AI agents: each item links to a canonical source-backed record with sector, source, timestamp, credibility, and exportable structured data.
A critical TOCTOU (Time-of-Check-Time-of-Use) vulnerability, tracked as CVE-2026-22702, has been disclosed in the widely used Python `virtualenv` tool. The flaw allows a local attacker to exploit a race condition during directory creation, enabling symlink-based attacks that could compromise the integrity and security ...
A critical race condition vulnerability has been identified within the `SchedulerWorker` class, creating a window where multiple identical processes can be forked simultaneously. The flaw is a classic TOCTOU (Time-of-Check-Time-of-Use) issue, where the system checks for an existing process PID but does not lock the res...
A critical Time-of-Check-Time-of-Use (TOCTOU) vulnerability exists in the LocalFile sink's path validation, creating a potential symlink escape route from the designated `export_dir`. The flaw is acknowledged in the code itself, where the `validate_sink_config` function performs canonicalization and containment checks,...
A critical security vulnerability has been identified in four key SBOM (Software Bill of Materials) task functions within the codebase. The functions `generate_sbom`, `score_tool`, `score_attestation`, and `score_osv` directly use user-supplied `args.file_path` and `args.revision_number` to construct file system paths ...
A high-severity security vulnerability has been flagged in a critical shell script, exposing a classic but dangerous race condition that could lead to arbitrary file deletion. The flaw, a Time-of-Check/Time-of-Use (TOCTOU) bug, resides in the `/root/spawn/sh/e2e/e2e.sh` script, specifically within its LOG_DIR cleanup l...
A critical Time-of-Check-Time-of-Use (TOCTOU) vulnerability has been discovered in the SUID binary `/usr/bin/mount` from the util-linux package, tracked as CVE-2026-27456. This flaw allows a local, unprivileged user to potentially escalate privileges to root by exploiting a race condition during the setup of loop devic...
Apache Tomcat 多个版本中披露了一个高危安全漏洞(CVE-2024-50379),其核心是一个存在于JSP编译过程中的“检查时间与使用时间”(TOCTOU)竞争条件。在特定非默认配置下,当默认Servlet被启用为可写状态,且系统使用不区分大小写的文件系统时,攻击者可利用此漏洞实现远程代码执行(RCE)。该漏洞的CVSS v3.1评分为10.0(满分),评级为“高危”,影响范围广泛。 该漏洞影响Apache Tomcat 11.0.0-M1至11.0.1、10.1.0-M1至10.1.33、以及9.0.0.M1至9.0.97的所有版本。值得注意的是,在CVE创建时已结束生命周期(EOL)的版本8.5.0至8.5.100...
Apache Tomcat 核心组件中一个被标记为“高危”的安全漏洞(GHSA-27hp-xhwr-wr2m / CVE-2024-56337)已被披露。该漏洞源于一个时间检查与时间使用(TOCTOU)竞争条件问题,其根源在于对先前漏洞 CVE-2024-50379 的缓解措施不完整。这意味着,尽管已发布过补丁,但防御机制存在缺口,攻击者仍可能利用此缺陷。 该漏洞影响范围广泛,波及 Tomcat 的多个主要版本:从 11.0.0-M1 到 11.0.1,从 10.1.0-M1 到 10.1.33,以及从 9.0.0.M1 到 9.0.97。具体而言,在运行于不区分大小写的文件系统上,且默认 Servlet 的写入功能被启用(即 `...
A Time-of-Check-Time-of-Use (TOCTOU) vulnerability has been identified in the virtualenv package (versions up to and including 20.36.1), potentially allowing local attackers to perform symlink-based directory manipulation attacks. The flaw exists in how virtualenv handles directory creation operations, creating a race ...
A critical security review has identified overlapping vulnerabilities in the file mutation paths of koda-core, specifically within `koda-core/src/tools/file_tools.rs`. The flaw stems from a fundamental mismatch between logical path validation and actual filesystem operations: code relies on `safe_resolve_path` for acce...
A race condition in the audit logging subsystem has been identified as the source of hash chain integrity failures across multiple audit files. During end-to-end internal testing, automated diagnostics flagged 14 distinct chain breaks in audit log files spanning from April 11 to May 6, 2026. The root cause lies in how ...