rpm package
suse/fuse&distro=SUSE Linux Enterprise Server 12 SP3
pkg:rpm/suse/fuse&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP3
Vulnerabilities (1)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2018-10906 | Med | 5.3 | < 2.9.3-6.3.1 | 2.9.3-6.3.1 | Jul 24, 2018 | In fuse before versions 2.9.8 and 3.x before 3.2.5, fusermount is vulnerable to a restriction bypass when SELinux is active. This allows non-root users to mount a FUSE file system with the 'allow_other' mount option regardless of whether 'user_allow_other' is set in the fuse conf |
- affected < 2.9.3-6.3.1fixed 2.9.3-6.3.1
In fuse before versions 2.9.8 and 3.x before 3.2.5, fusermount is vulnerable to a restriction bypass when SELinux is active. This allows non-root users to mount a FUSE file system with the 'allow_other' mount option regardless of whether 'user_allow_other' is set in the fuse conf