1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
|
PublicDateAtUSN: 2012-06-28
Candidate: CVE-2012-2737
PublicDate: 2012-07-22
References:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-2737
http://www.ubuntu.com/usn/usn-1485-1
Description:
The user_change_icon_file_authorized_cb function in
/usr/libexec/accounts-daemon in AccountsService before 0.6.22 does not
properly check the UID when copying an icon file to the system cache
directory, which allows local users to read arbitrary files via a race
condition.
Ubuntu-Description:
Notes:
Bugs:
https://bugzilla.redhat.com/show_bug.cgi?id=832532
Priority: medium
Discovered-by: Florian Weimer
Assigned-to: mdeslaur
Patches_accountsservice:
upstream: http://cgit.freedesktop.org/accountsservice/commit/?id=26213aa0e0d8dca5f36cc23f6942525224cbe9f5
upstream: http://cgit.freedesktop.org/accountsservice/commit/?id=bd51aa4cdac380f55d607f4ffdf2ab3c00d08721
upstream: http://cgit.freedesktop.org/accountsservice/commit/?id=4c5b12e363410e490e776e4b4a86dcce157a543d
upstream_accountsservice: released (0.6.22)
hardy_accountsservice: DNE
lucid_accountsservice: DNE
natty_accountsservice: ignored (reached end-of-life)
oneiric_accountsservice: released (0.6.14-1git1ubuntu1.2)
precise_accountsservice: released (0.6.15-2ubuntu9.1)
quantal_accountsservice: released (0.6.15-2ubuntu10)
devel_accountsservice: released (0.6.15-2ubuntu10)
|