Andriy Grytsenko

**Name of the Vulnerable Software and Affected Versions** Libmenu-cache version 1.0.2 **Description** The issue arises from Libmenu-cache insecurely using /tmp for a socket file. This allows a local user to cause a denial of service, resulting in menu unavailability. **Recommendations** For Libmenu-cache version 1.0.2, consider restricting access to the /tmp directory to prevent exploitation until a patch is available. As a temporary workaround, avoid using the affected socket file in /tmp to minimize the risk of denial of service. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** PCManFM version 1.2.5 **Description** The issue allows a local user to cause a denial of service, resulting in application unavailability, due to the insecure use of /tmp for a socket file. **Recommendations** For PCManFM version 1.2.5, consider updating to a newer version that securely handles temporary files to prevent denial of service attacks.