Note:
This project will be discontinued after December 13, 2021. [more]
2018-06-19
An issue was discovered in the cantata-mounter D-Bus service in Cantata through 2.3.1. A regular user can inject additional mount options such as file_mode= by manipulating (for example) the domain parameter of the samba URL.
Products | Cantata |
Type | Improper Input Validation (CWE-20) |
First patch |
https://github.com/CDrummond/cantata/commit/afc4f8315d3e96574925fb530a7004cc9e6ce3d3 |
Relevant file/s |
• ./CMakeLists.txt (modified, +2, -8)
• ./ChangeLog (modified, +2) • ./devices/avahi/CMakeLists.txt (removed, -8) • ./devices/avahi/avahi.cpp (removed, -97) • ./devices/avahi/avahi.h (removed, -59)
• ./devices/avahi/avahiservice.cpp (removed, -82)
• ./devices/avahi/avahiservice.h (removed, -60) • ./devices/avahi/org.freedesktop.Avahi.Server.OLD.xml (removed, -218) • ./devices/avahi/org.freedesktop.Avahi.Server.xml (removed, -218) • ./devices/avahi/org.freedesktop.Avahi.ServiceBrowser.xml (removed, -59) • ./devices/avahi/org.freedesktop.Avahi.ServiceResolver.OLD.xml (removed, -58) • ./devices/avahi/org.freedesktop.Avahi.ServiceResolver.xml (removed, -58) • ./devices/mounter/CMakeLists.txt (removed, -14) • ./devices/mounter/main.cpp (removed, -33) • ./devices/mounter/mount.cifs.wrapper (removed, -8) • ./devices/mounter/mounter.cpp (removed, -249) • ./devices/mounter/mounter.h (removed, -69) • ./devices/mounter/mpd.cantata.mounter.conf (removed, -17) • ./devices/mounter/mpd.cantata.mounter.service.cmake (removed, -4) • ./devices/mounter/mpd.cantata.mounter.xml (removed, -28) • ./devices/remotedevicepropertieswidget.cpp (modified, +2, -95) • ./devices/remotedevicepropertieswidget.ui (modified, +1, -218) • ./devices/remotefsdevice.cpp (modified, +2, -107) • ./devices/remotefsdevice.h (modified, -11) • ./translations/blank.ts (modified, +1, -11) • ./translations/cantata_cs.ts (modified, +4, -22) • ./translations/cantata_da.ts (modified, +2, -12) • ./translations/cantata_de.ts (modified, +2, -20) • ./translations/cantata_en_GB.ts (modified, +1, -11) • ./translations/cantata_es.ts (modified, +1, -19) • ./translations/cantata_fr.ts (modified, +2, -20) • ./translations/cantata_hu.ts (modified, +4, -22) • ./translations/cantata_it.ts (modified, +2, -12) • ./translations/cantata_ja.ts (modified, +4, -22) • ./translations/cantata_ko.ts (modified, +4, -22) • ./translations/cantata_pl.ts (modified, +4, -22) • ./translations/cantata_ru.ts (modified, +4, -22) • ./translations/cantata_zh_CN.ts (modified, +1, -19) |
Links | http://www.openwall.com/lists/oss-security/2018/06/18/1 |
Navigation
Patch data:
Patched area:
(on by default)
Patched area: