Support / Security / Advisories / Mandriva Linux 2007.1 / MDVSA-2008:208

Package name: pam_mount
Date: 2008-09-29
Advisory ID: MDVSA-2008:208
Affected versions: 2008.0 i586 , 2007.1 i586 , CS4.0 i586 , 2008.0 x86_64 , CS4.0 x86_64 , 2008.1 x86_64 , 2008.1 i586 , 2007.1 x86_64

Problem description

pam_mount 0.10 through 0.45, when luserconf is enabled, does not verify
mountpoint and source ownership before mounting a user-defined volume,
which allows local users to bypass intended access restrictions via
a local mount.

The updated packages have been patched to fix the issue.

Updated packages

2008.0 i586

 14582d4c7f686e67632d9603b33a16f6  2008.0/i586/pam_mount-0.17-1.1mdv2008.0.i586.rpm
 e909ab0be3d5e979500ce026c6d47217  2008.0/i586/pam_mount-devel-0.17-1.1mdv2008.0.i586.rpm 
 96406b251d1096347fbd9d699d158e53  2008.0/SRPMS/pam_mount-0.17-1.1mdv2008.0.src.rpm

2007.1 i586

 dabe7e010c95879959959e4804ae83cb  2007.1/i586/pam_mount-0.17-1.1mdv2007.1.i586.rpm
 b237206c3e85a63b0e733a7db02fcba1  2007.1/i586/pam_mount-devel-0.17-1.1mdv2007.1.i586.rpm 
 c81ceb5ccab44675322db02cdc5cc972  2007.1/SRPMS/pam_mount-0.17-1.1mdv2007.1.src.rpm

CS4.0 i586

 19f2eb0aacfc918f263797734665bd33  corporate/4.0/i586/pam_mount-0.10.0-5.1.20060mlcs4.i586.rpm
 74d983393ad8d8f288df52b682e5423d  corporate/4.0/i586/pam_mount-devel-0.10.0-5.1.20060mlcs4.i586.rpm 
 55b755782e2b61a013e60d397f1cfbbd  corporate/4.0/SRPMS/pam_mount-0.10.0-5.1.20060mlcs4.src.rpm

2008.0 x86_64

 7e30f80f0b113a9c0f9089452eba9e66  2008.0/x86_64/pam_mount-0.17-1.1mdv2008.0.x86_64.rpm
 b0e1455f76a67b2def22fb84b3c835df  2008.0/x86_64/pam_mount-devel-0.17-1.1mdv2008.0.x86_64.rpm 
 96406b251d1096347fbd9d699d158e53  2008.0/SRPMS/pam_mount-0.17-1.1mdv2008.0.src.rpm

CS4.0 x86_64

 5e1cd73d9ab0d15e95333e0aac62c6ed  corporate/4.0/x86_64/pam_mount-0.10.0-5.1.20060mlcs4.x86_64.rpm
 1a4fef46e82af0950bc034fceec01285  corporate/4.0/x86_64/pam_mount-devel-0.10.0-5.1.20060mlcs4.x86_64.rpm 
 55b755782e2b61a013e60d397f1cfbbd  corporate/4.0/SRPMS/pam_mount-0.10.0-5.1.20060mlcs4.src.rpm

2008.1 x86_64

 3235bba384d4a2692b557b6a14ae1779  2008.1/x86_64/pam_mount-0.33-2.1mdv2008.1.x86_64.rpm 
 eec908414e3a3b50141821b4628c91e5  2008.1/SRPMS/pam_mount-0.33-2.1mdv2008.1.src.rpm

2008.1 i586

 0f3271419c28fadaa6420438d7f434ac  2008.1/i586/pam_mount-0.33-2.1mdv2008.1.i586.rpm 
 eec908414e3a3b50141821b4628c91e5  2008.1/SRPMS/pam_mount-0.33-2.1mdv2008.1.src.rpm

2007.1 x86_64

 db7d0a5b43608ce1741bfbcb75dccc88  2007.1/x86_64/pam_mount-0.17-1.1mdv2007.1.x86_64.rpm
 c18edd6508f15bb3bdf041baa8021df8  2007.1/x86_64/pam_mount-devel-0.17-1.1mdv2007.1.x86_64.rpm 
 c81ceb5ccab44675322db02cdc5cc972  2007.1/SRPMS/pam_mount-0.17-1.1mdv2007.1.src.rpm

References

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-3970