Local Privilege Escalation Vulnerability in Kitty Terminal by Kovid Goyal
CVE-2026-54055
5MEDIUM
What is CVE-2026-54055?
Kitty, a cross-platform GPU based terminal, is susceptible to a local privilege escalation vulnerability due to a flaw in its file transmission protocol. Versions prior to 0.47.2 allow a child process within the terminal to exploit a TOCTOU (Time-of-Check-Time-of-Use) race condition. This occurs because the os.open() function does not employ the O_NOFOLLOW flag, permitting an adversary to create a symlink that diverts a file write operation to an arbitrary location on the filesystem. The issue has been addressed in version 0.47.2.
Affected Version(s)
kitty < 0.47.2
