shadow: TOCTOU (time-of-check time-of-use) race condition when copying and removing …
shadow: TOCTOU (time-of-check time-of-use) race condition when copying and removing directory trees
References
- https://security-tracker.debian.org/tracker/CVE-2013-4235
- https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2013-4235
- https://access.redhat.com/security/cve/cve-2013-4235
- [mina-dev] 20210225 [jira] [Created] (FTPSERVER-500) Security vulnerability in common/lib/log4j-1.2.17.jar mailing-list
- GLSA-202210-26 vendor-advisory
- https://security-tracker.debian.org/tracker/CVE-2013-4235 x_transferred
- https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2013-4235 x_transferred
- https://access.redhat.com/security/cve/cve-2013-4235 x_transferred
- [mina-dev] 20210225 [jira] [Created] (FTPSERVER-500) Security vulnerability in common/lib/log4j-1.2.17.jar mailing-list x_transferred
- GLSA-202210-26 vendor-advisory x_transferred
- https://security-tracker.debian.org/tracker/CVE-2013-4235
- https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2013-4235
- https://access.redhat.com/security/cve/cve-2013-4235
- [mina-dev] 20210225 [jira] [Created] (FTPSERVER-500) Security vulnerability in common/lib/log4j-1.2.17.jar mailing-list
- GLSA-202210-26 vendor-advisory
- https://security-tracker.debian.org/tracker/CVE-2013-4235 x_transferred
- https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2013-4235 x_transferred
- https://access.redhat.com/security/cve/cve-2013-4235 x_transferred
- [mina-dev] 20210225 [jira] [Created] (FTPSERVER-500) Security vulnerability in common/lib/log4j-1.2.17.jar mailing-list x_transferred
- GLSA-202210-26 vendor-advisory x_transferred
Affected products
- ==1
Matching in nixpkgs
pkgs.su
Suite containing authentication-related tools such as passwd and su
pkgs.shadow
Suite containing authentication-related tools such as passwd and su
pkgs.shadowenv
reversible directory-local environment variable manipulations
pkgs.shadowfox
Universal dark theme for Firefox while adhering to the modern design principles set by Mozilla
pkgs.shadow-tls
Proxy to expose real tls handshake to the firewall
pkgs.go-shadowsocks2
Fresh implementation of Shadowsocks in Go
-
nixos-unstable shadowsocks2-0.1.5
- nixpkgs-unstable shadowsocks2-0.1.5
- nixos-unstable-small shadowsocks2-0.1.5
-
nixos-25.11 shadowsocks2-0.1.5
- nixos-25.11-small shadowsocks2-0.1.5
- nixpkgs-25.11-darwin shadowsocks2-0.1.5
pkgs.shadowsocks-rust
Rust port of Shadowsocks
pkgs.shadowsocks-libev
Lightweight secured SOCKS5 proxy
pkgs.typstPackages.shadowed
Box shadows for Typst
pkgs.shadowsocks-v2ray-plugin
Yet another SIP003 plugin for shadowsocks, based on v2ray
-
nixos-unstable v2ray-plugin-1.3.2-unstable-2025-09-05
- nixpkgs-unstable v2ray-plugin-1.3.2-unstable-2025-09-05
- nixos-unstable-small v2ray-plugin-1.3.2-unstable-2025-09-05
-
nixos-25.11 v2ray-plugin-1.3.2-unstable-2025-09-05
- nixos-25.11-small v2ray-plugin-1.3.2-unstable-2025-09-05
- nixpkgs-25.11-darwin v2ray-plugin-1.3.2-unstable-2025-09-05
pkgs.haskellPackages.shadowsocks
A fast SOCKS5 proxy that help you get through firewalls
-
nixos-unstable 1.20180408
- nixpkgs-unstable 1.20180408
- nixos-unstable-small 1.20180408
-
nixos-25.11 1.20180408
- nixos-25.11-small 1.20180408
- nixpkgs-25.11-darwin 1.20180408
pkgs.typstPackages.shadowed_0_1_0
Box shadows for Typst
pkgs.typstPackages.shadowed_0_1_1
Box shadows for Typst
pkgs.typstPackages.shadowed_0_1_2
Box shadows for Typst
pkgs.typstPackages.shadowed_0_2_0
Box shadows for Typst
pkgs.typstPackages.shadowed_0_3_0
Box shadows for Typst
-
nixos-unstable -
- nixos-unstable-small 0.3.0
pkgs.wayfirePlugins.wayfire-shadows
Wayfire plugin that adds window shadows
pkgs.haskellPackages.Unixutils-shadow
A simple interface to shadow passwords (aka, shadow.h)
pkgs.obs-studio-plugins.obs-stroke-glow-shadow
OBS plugin to provide efficient Stroke, Glow, and Shadow effects on masked sources
Package maintainers
-
@oxzi Alvar Penning <post@0x21.biz>
-
@oluceps oluceps <nixos@oluceps.uk>
-
@ahrzb AmirHossein Roozbahani <ahrzb5@gmail.com>
-
@cherrypiejam Gongqi Huang
-
@wineee Lu Hongxu <lhongxu@outlook.com>
-
@flexiondotorg Martin Wimpress <martin@wimpress.org>
-
@RossSmyth Ross Smyth