logo
DATABASE RESOURCES PRICING ABOUT US

CVE-2018-12561

Description

An issue was discovered in the cantata-mounter D-Bus service in Cantata through 2.3.1. A regular user can inject additional mount options such as file_mode= by manipulating (for example) the domain parameter of the samba URL.


Affected Package


OS OS Version Package Name Package Version
Debian 12 cantata 2.5.0.ds1-1
Debian 11 cantata 2.4.2.ds1-1
Debian 10 cantata 2.3.3.ds1-1
Debian 999 cantata 2.5.0.ds1-1

Related