Gentoo Websites Logo
Go to: Gentoo Home Documentation Forums Lists Bugs Planet Store Wiki Get Gentoo!

Bug 408879 (CVE-2012-1174)

Summary: <sys-apps/systemd-44 : Session Logout File Deletion Weakness (CVE-2012-1174)
Product: Gentoo Security Reporter: Agostino Sarubbo <ago>
Component: VulnerabilitiesAssignee: Gentoo Security <security>
Status: RESOLVED FIXED    
Severity: trivial CC: systemd
Priority: Normal    
Version: unspecified   
Hardware: All   
OS: Linux   
URL: https://secunia.com/advisories/48331/
Whiteboard: ~4 [noglsa]
Package list:
Runtime testing required: ---

Description Agostino Sarubbo gentoo-dev 2012-03-19 16:12:01 UTC 
From secunia security advisory at $URL:

Description
A weakness has been reported in systemd, which can be exploited by malicious, local users to manipulate certain data.

The weakness is caused due to a race condition in the systemd-logind component when removing certain records during user's logout and can be exploited to delete an arbitrary file via a symlink.

The weakness is reported in version 44 and prior.


Solution
Fixed in the GIT repository.
Comment 1 Michał Górny archtester Gentoo Infrastructure gentoo-dev Security 2012-04-05 11:16:24 UTC 
I've released patched -44 which addresses this issue.
Comment 2 Agostino Sarubbo gentoo-dev 2012-04-05 11:23:32 UTC 
thanks, closing
Comment 3 GLSAMaker/CVETool Bot gentoo-dev 2012-07-18 23:12:41 UTC 
CVE-2012-1174 (http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-1174):
  The rm_rf_children function in util.c in the systemd-logind login manager in
  systemd before 44, when logging out, allows local users to delete arbitrary
  files via a symlink attack on unspecified files, related to "particular
  records related with user session."