Hi! At the moment, the lock file usage in winkeydaemon is useless since there is never a test if the lock file does exist. In my opinion, the vulnerability should be solved by using routines from LockFile::Simple (package liblockfile-simple-perl) and creating the files directly in /tmp/.