Mandriva Linux Security Advisory : accountsservice (MDVSA-2013:060)
Low Nessus Plugin ID 66074
SynopsisThe remote Mandriva Linux host is missing one or more security updates.
DescriptionUpdated accountsservice packages fix security vulnerability :
Florian Weimer discovered that AccountsService incorrectly handled privileges when copying certain files to the system cache directory. A local attacker could exploit this issue to read arbitrary files, bypassing intended permissions (CVE-2012-2737).
SolutionUpdate the affected accountsservice, lib64accountsservice-devel and / or lib64accountsservice0 packages.