[prev in list] [next in list] [prev in thread] [next in thread]
List: oss-security
Subject: [oss-security] [CVE-2018-10906] libfuse: restriction bypass of the "allow_other" option when SELinux
From: Nikolaus Rath <nikolaus () rath ! org>
Date: 2018-07-24 11:27:56
Message-ID: 1532431676.1547189.1451049432.34DB1AC3 () webmail ! messagingengine ! com
[Download RAW message or body]
Hi,
I've just released updated versions of libfuse 2.x and libfuse 3.x that fix CVE-2018-10906.
Jann Horn discovered that it is possible to bypass fusermount's restrictions on the use of the \
"allow_other" mount option as follows if SELinux is active. fusermount is a (typically setuid) \
helper for mounting FUSE file systems.
Best,
-Nikolaus
--
GPG Fingerprint: ED31 791B 2C5C 1613 AF38 8B8A D113 FCAC 3C4E 599F
»Time flies like an arrow, fruit flies like a Banana. «
[prev in list] [next in list] [prev in thread] [next in thread]
Configure |
About |
News |
Add a list |
Sponsored by KoreLogic