CVE-2022-24951: 
Linux openSUSE vulnerability analysis and mitigation

A race condition vulnerability was discovered in Eternal Terminal versions prior to 6.2.0. The vulnerability (CVE-2022-24951) allows a local attacker to hijack Eternal Terminal's IPC socket, enabling unauthorized access to Eternal Terminal clients attempting to connect. The vulnerability was disclosed to the author on October 29, 2021, and was patched in version 6.2.0 released in May 2022 (GitHub Release).

The vulnerability exists in the local IPC socket (etserver.idpasskey.fifo) being placed in a world-writeable directory (/tmp). The issue occurs in the pipeSocketHandler::listen() function, which contains a race condition where an attacker can create a file between unlink() and bind() calls. This causes the program to fail and allows the attacker to control the file at the specified path. The socket is used to route traffic received over the ET protocol and is considered a source of truth for connecting ET clients (GHSA Advisory).

If successfully exploited, an attacker can impersonate an ET server and cause the systemd service to terminate startup prematurely. When clients attempt to connect, the attacker can present a 'fake' ET server which can then inject arbitrary commands into ET client sessions. This allows the attacker to potentially execute malicious commands in the context of connecting users (GHSA Advisory).

The vulnerability has been fixed in Eternal Terminal version 6.2.0. Users are advised to upgrade to this version or later to mitigate the risk (GitHub Release).