Upstream information

CVE-2018-12561 at MITRE

Description

An issue was discovered in the cantata-mounter D-Bus service in Cantata through 2.3.1. A regular user can inject additional mount options such as file_mode= by manipulating (for example) the domain parameter of the samba URL.

SUSE information

Overall state of this security issue: Does not affect SUSE products

This issue is currently rated as having not set severity.

SUSE Bugzilla entry: 1099267 [RESOLVED / DUPLICATE]

No SUSE Security Announcements cross referenced.