CVE-2026-35355

Name of the Vulnerable Software and Affected Versions uutils coreutils (affected versions not specified)

Description The install utility contains a Time-of-Check to Time-of-Use (TOCTOU) race condition during file installation. This occurs because the implementation unlinks an existing destination file and recreates it using a path-based operation without the O EXCL flag. A local attacker can exploit the timing window between the unlink and creation to replace the path with a symbolic link, enabling the redirection of privileged writes to overwrite arbitrary system files. TOCTOU is a software bug where the state of a resource changes between the time it is checked and the time it is used.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.