Nixpkgs Security Tracker

Login with GitHub

Suggestion detail

Untriaged

Permalink CVE-2012-5630

created 1 month ago

libuser 0.56 and 0.57 has a TOCTOU (time-of-check time-of-use) race …

libuser 0.56 and 0.57 has a TOCTOU (time-of-check time-of-use) race condition when copying and removing directory trees.

References

https://security-tracker.debian.org/tracker/CVE-2012-5630 x_refsource_MISC
https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2012-5630 x_refsource_MISC
Red Hat x_refsource_REDHAT vendor-advisory
Fedora vendor-advisory x_refsource_FEDORA
https://www.securityfocus.com/bid/59285 x_refsource_MISC
https://security-tracker.debian.org/tracker/CVE-2012-5630 x_refsource_MISC x_transferred
https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2012-5630 x_refsource_MISC x_transferred
Red Hat x_refsource_REDHAT vendor-advisory x_transferred
Fedora vendor-advisory x_refsource_FEDORA x_transferred
https://www.securityfocus.com/bid/59285 x_refsource_MISC x_transferred
https://security-tracker.debian.org/tracker/CVE-2012-5630 x_refsource_MISC
https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2012-5630 x_refsource_MISC
Red Hat x_refsource_REDHAT vendor-advisory
Fedora vendor-advisory x_refsource_FEDORA
https://www.securityfocus.com/bid/59285 x_refsource_MISC
https://security-tracker.debian.org/tracker/CVE-2012-5630 x_refsource_MISC x_transferred
https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2012-5630 x_refsource_MISC x_transferred
Red Hat x_refsource_REDHAT vendor-advisory x_transferred
Fedora vendor-advisory x_refsource_FEDORA x_transferred
https://www.securityfocus.com/bid/59285 x_refsource_MISC x_transferred

Affected products

libuser

==0.56
==0.57

Matching in nixpkgs

pkgs.lomiri.libusermetrics

Enables apps to locally store interesting numerical data for later presentation

nixos-unstable 1.4.0
- nixpkgs-unstable 1.4.0
- nixos-unstable-small 1.4.0
nixos-25.11 1.3.3
- nixos-25.11-small 1.3.3
- nixpkgs-25.11-darwin 1.3.3

Package maintainers

@OPNA2608 Cosima Neidahl <opna2608@protonmail.com>