Upstream information

CVE-2018-12560 at MITRE

Description

An issue was discovered in the cantata-mounter D-Bus service in Cantata through 2.3.1. Arbitrary unmounts can be performed by regular users via directory traversal sequences such as a home/../sys/kernel substring.

SUSE information

Overall state of this security issue: Does not affect SUSE products

This issue is currently rated as having not set severity.

SUSE Bugzilla entry: 1099266 [RESOLVED / DUPLICATE]

No SUSE Security Announcements cross referenced.