CVE-2024-36041: 
NixOS vulnerability analysis and mitigation

KSmserver in KDE Plasma Workspace (aka plasma-workspace) before 5.27.11.1 and 6.x before 6.0.5.1 contains a critical security vulnerability that allows unauthorized access to the session manager. The vulnerability was discovered by Fabian Vogt and disclosed through a security advisory in May 2024 (KDE Advisory).

The vulnerability stems from KSmserver incorrectly allowing connections via ICE (Inter-Client Exchange) based purely on the host, accepting all local connections. This implementation flaw has been assigned a CVSS v3.1 base score of 7.8 (HIGH) with the vector string CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H, indicating local access with low complexity and no user interaction required (NVD).

The vulnerability allows another user on the same machine to gain unauthorized access to the session manager. Through this access, an attacker could exploit the session restore feature to execute arbitrary code as the victim user during the next system boot by manipulating the /tmp directory (KDE Advisory, Security Online).

For Plasma 6 users, the recommended mitigation is to update plasma-workspace to version 6.0.5.1 or later. For Plasma 5 users, updating to version 5.27.11.1 or later is required. Additionally, system administrators should ensure the binary 'iceauth' is installed on the system. Alternative mitigation involves applying specific patches available through the KDE repository (KDE Advisory).