From secunia security advisory at $URL: Description A weakness has been reported in systemd, which can be exploited by malicious, local users to manipulate certain data. The weakness is caused due to a race condition in the systemd-logind component when removing certain records during user's logout and can be exploited to delete an arbitrary file via a symlink. The weakness is reported in version 44 and prior. Solution Fixed in the GIT repository.
I've released patched -44 which addresses this issue.
thanks, closing
CVE-2012-1174 (http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-1174): The rm_rf_children function in util.c in the systemd-logind login manager in systemd before 44, when logging out, allows local users to delete arbitrary files via a symlink attack on unspecified files, related to "particular records related with user session."
