MGASA-2013-0110
| Date: | April 6th, 2013 |
| Affected releases: | 2 |
| Media: | Core |
Description:
Updated libuser packages fix security vulnerabilities:
A TOCTOU (time-of-check time-of-use) race condition was found in the way
libuser performed copying and removal of (user) directory trees. A local
attacker, with permissions to write into particular directory, could use
this flaw to conduct symbolic link attacks, leading to their ability to
alter / remove directories outside of this directory (tree), if this
directory was simultaneously modified (copied or removed) via libuser
functionality (CVE-2012-5630).
An information disclosure flaw was found in the way libuser performed
movement of user's home directory. Previously, during the move the
ownership of all the (sub)entries present in directory tree, to be moved,
were changed from privileged user account to the effective user id of the
user, the home directory should belong to. A local attacker could use this
flaw to conduct hardlink attacks and possibly obtain unauthorized access
to arbitrary system file (CVE-2012-5644).
Updated Packages:
i586:
libuser-0.57.3-1.1.mga2.i586.rpm
libuser1-0.57.3-1.1.mga2.i586.rpm
libuser-devel-0.57.3-1.1.mga2.i586.rpm
libuser-ldap-0.57.3-1.1.mga2.i586.rpm
libuser-python-0.57.3-1.1.mga2.i586.rpm
libuser-debug-0.57.3-1.1.mga2.i586.rpm
x86_64:
lib64user1-0.57.3-1.1.mga2.x86_64.rpm
lib64user-devel-0.57.3-1.1.mga2.x86_64.rpm
libuser-0.57.3-1.1.mga2.x86_64.rpm
libuser-ldap-0.57.3-1.1.mga2.x86_64.rpm
libuser-python-0.57.3-1.1.mga2.x86_64.rpm
libuser-debug-0.57.3-1.1.mga2.x86_64.rpm
SRPMS:
libuser-0.57.3-1.1.mga2.src.rpm
References:
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-5630
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-5644
https://bugzilla.redhat.com/show_bug.cgi?id=884685
https://bugzilla.redhat.com/show_bug.cgi?id=885724
https://bugs.mageia.org/show_bug.cgi?id=9581
