Your friendly security team received the following report via oss-security.
Please respond ASAP.
The issue is public.
------------------------------------------------------------------------------
Date: Thu, 04 Nov 2010 15:45:33 -0400
From: Marc Deslauriers <email address hidden>
Subject: [oss-security] CVE request: fuse
Hello,
There is an issue with FUSE that lets unprivileged users unmount
arbitrary locations via a symlink attack. This is a different issue than
CVE-2009-3297 and CVE-2010-0789.
Your friendly security team received the following report via oss-security.
Please respond ASAP.
The issue is public.
------- ------- ------- ------- ------- ------- ------- ------- ------- ------- ------- -
Date: Thu, 04 Nov 2010 15:45:33 -0400
From: Marc Deslauriers <email address hidden>
Subject: [oss-security] CVE request: fuse
Hello,
There is an issue with FUSE that lets unprivileged users unmount
arbitrary locations via a symlink attack. This is a different issue than
CVE-2009-3297 and CVE-2010-0789.
Ref.:
http:// seclists. org/fulldisclos ure/2010/ Nov/15 www.halfdog. net/Security/ FuseTimerace/
http://
Thanks,
Marc.
-- www.ubuntu. com/ www.canonical. com/
Marc Deslauriers
Ubuntu Security Engineer | http://
Canonical Ltd. | http://