rpm package
suse/fuse&distro=SUSE Linux Enterprise Module for Basesystem 15
pkg:rpm/suse/fuse&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015
Vulnerabilities (1)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2018-10906 | Med | 5.3 | < 2.9.7-3.3.1 | 2.9.7-3.3.1 | Jul 24, 2018 | In fuse before versions 2.9.8 and 3.x before 3.2.5, fusermount is vulnerable to a restriction bypass when SELinux is active. This allows non-root users to mount a FUSE file system with the 'allow_other' mount option regardless of whether 'user_allow_other' is set in the fuse conf |
- affected < 2.9.7-3.3.1fixed 2.9.7-3.3.1
In fuse before versions 2.9.8 and 3.x before 3.2.5, fusermount is vulnerable to a restriction bypass when SELinux is active. This allows non-root users to mount a FUSE file system with the 'allow_other' mount option regardless of whether 'user_allow_other' is set in the fuse conf