CVE-2013-0219

Publication date 24 February 2013

Last updated 24 July 2024

Ubuntu priority

System Security Services Daemon (SSSD) before 1.9.4, when (1) creating, (2) copying, or (3) removing a user home directory tree, allows local users to create, modify, or delete arbitrary files via a symlink attack on another user's files.

Status

Show unmaintained releases

Package	Ubuntu Release	Status
sssd	17.04 zesty	Fixed 1.9.3-0ubuntu2
	16.10 yakkety	Fixed 1.9.3-0ubuntu2
	16.04 LTS xenial	Fixed 1.9.3-0ubuntu2
	15.10 wily	Fixed 1.9.3-0ubuntu2
	15.04 vivid	Fixed 1.9.3-0ubuntu2
	14.10 utopic	Fixed 1.9.3-0ubuntu2
	14.04 LTS trusty	Fixed 1.9.3-0ubuntu2
	13.10 saucy	Fixed 1.9.3-0ubuntu2
	13.04 raring	Fixed 1.9.3-0ubuntu2
	12.10 quantal	Ignored
	12.04 LTS precise	Ignored
	11.10 oneiric	Ignored
	10.04 LTS lucid	Ignored
	8.04 LTS hardy	Not in release

How can I get the fixes?
What do statuses mean?

References

MITRE
NVD
Launchpad
Debian

Other references

https://www.cve.org/CVERecord?id=CVE-2013-0219