Upstream information

CVE-2012-5630 at MITRE

Description

libuser 0.56 and 0.57 has a TOCTOU (time-of-check time-of-use) race condition when copying and removing directory trees.

SUSE information

Overall state of this security issue: Does not affect SUSE products

This issue is currently rated as having low severity.

No SUSE Bugzilla entries cross referenced.

No SUSE Security Announcements cross referenced.

List of released packages

Product(s) Fixed package version(s) References
openSUSE Tumbleweed
  • libuser >= 0.60-5.6
  • libuser-devel >= 0.60-5.6
  • libuser-lang >= 0.60-5.6
  • libuser-python >= 0.60-5.6
  • libuser1 >= 0.60-5.6
Patchnames:
openSUSE Tumbleweed GA libuser