CVE-2018-12561 (NVD)

2018-06-19

An issue was discovered in the cantata-mounter D-Bus service in Cantata through 2.3.1. A regular user can inject additional mount options such as file_mode= by manipulating (for example) the domain parameter of the samba URL.

Products Cantata
Type Improper Input Validation (CWE-20)
First patch https://github.com/CDrummond/cantata/commit/afc4f8315d3e96574925fb530a7004cc9e6ce3d3
Relevant file/s • ./CMakeLists.txt (modified, +2, -8)
• ./ChangeLog (modified, +2)
• ./devices/avahi/CMakeLists.txt (removed, -8)
• ./devices/avahi/avahi.cpp (removed, -97)
• ./devices/avahi/avahi.h (removed, -59)
• ./devices/avahi/avahiservice.cpp (removed, -82)
• ./devices/avahi/avahiservice.h (removed, -60)
• ./devices/avahi/org.freedesktop.Avahi.Server.OLD.xml (removed, -218)
• ./devices/avahi/org.freedesktop.Avahi.Server.xml (removed, -218)
• ./devices/avahi/org.freedesktop.Avahi.ServiceBrowser.xml (removed, -59)
• ./devices/avahi/org.freedesktop.Avahi.ServiceResolver.OLD.xml (removed, -58)
• ./devices/avahi/org.freedesktop.Avahi.ServiceResolver.xml (removed, -58)
• ./devices/mounter/CMakeLists.txt (removed, -14)
• ./devices/mounter/main.cpp (removed, -33)
• ./devices/mounter/mount.cifs.wrapper (removed, -8)
• ./devices/mounter/mounter.cpp (removed, -249)
• ./devices/mounter/mounter.h (removed, -69)
• ./devices/mounter/mpd.cantata.mounter.conf (removed, -17)
• ./devices/mounter/mpd.cantata.mounter.service.cmake (removed, -4)
• ./devices/mounter/mpd.cantata.mounter.xml (removed, -28)
• ./devices/remotedevicepropertieswidget.cpp (modified, +2, -95)
• ./devices/remotedevicepropertieswidget.ui (modified, +1, -218)
• ./devices/remotefsdevice.cpp (modified, +2, -107)
• ./devices/remotefsdevice.h (modified, -11)
• ./translations/blank.ts (modified, +1, -11)
• ./translations/cantata_cs.ts (modified, +4, -22)
• ./translations/cantata_da.ts (modified, +2, -12)
• ./translations/cantata_de.ts (modified, +2, -20)
• ./translations/cantata_en_GB.ts (modified, +1, -11)
• ./translations/cantata_es.ts (modified, +1, -19)
• ./translations/cantata_fr.ts (modified, +2, -20)
• ./translations/cantata_hu.ts (modified, +4, -22)
• ./translations/cantata_it.ts (modified, +2, -12)
• ./translations/cantata_ja.ts (modified, +4, -22)
• ./translations/cantata_ko.ts (modified, +4, -22)
• ./translations/cantata_pl.ts (modified, +4, -22)
• ./translations/cantata_ru.ts (modified, +4, -22)
• ./translations/cantata_zh_CN.ts (modified, +1, -19)
Links http://www.openwall.com/lists/oss-security/2018/06/18/1

cantata - Tree: afc4f8315d

(? files)

Filter Settings
Files
Navigation
Patch data:

(on by default)


Patched area: