Bug 22834 - CVE-2009-3297: fusermount privilege escalation
Summary: CVE-2009-3297: fusermount privilege escalation
Status: CLOSED FIXED
Alias: None
Product: Sisyphus
Classification: Development
Component: fuse (show other bugs)
Version: unstable
Hardware: all Linux
: P3 blocker
Assignee: Evgeny Sinelnikov
QA Contact: qa-sisyphus
URL: https://bugzilla.redhat.com/show_bug....
Keywords: security
Depends on:
Blocks:
 
Reported: 2010-01-27 00:41 MSK by Dmitry V. Levin
Modified: 2010-01-27 15:46 MSK (History)
4 users (show)

See Also:

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.
Description Dmitry V. Levin 2010-01-27 00:41:13 MSK 
Daniel Rosenberg found a race condition in the FUSE's fusermount's utility by performing FUSE filesystem(s) unmount operation.  A local, unprivileged user could use this flaw to cause a denial of service (unprivileged unmount of FUSE filesystem share(s) owned by privileged user) via symlink attack involving FUSE share(s) belonging to privileged user.
Comment 1 Repository Robot 2010-01-27 13:32:04 MSK 
fuse-2.8.2-alt1 -> sisyphus:

* Wed Jan 27 2010 Denis Smirnov <mithraen@altlinux> 2.8.2-alt1

- 2.8.2
- CVE-2009-3297 (ALT #22834)
Comment 2 Andrey Cherepanov 2010-01-27 15:10:18 MSK 
Денис, можете собрать в 5.1?
Comment 4 Andrey Cherepanov 2010-01-27 15:46:26 MSK 
Спасибо. task #19253 — в p5.