Package: libpam-mount Version: 0.18-3 Severity: grave Tags: security Hi, the following CVE (Common Vulnerabilities & Exposures) id was published for libpam-mount.
CVE-2008-3970[0]: | pam_mount 0.10 through 0.45, when luserconf is enabled, does not | verify mountpoint and source ownership before mounting a | user-defined volume, which allows local users to bypass intended | access restrictions via a local mount. If you fix the vulnerability please also make sure to include the CVE id in your changelog entry. For further information see: [0] http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-3970 http://security-tracker.debian.net/tracker/CVE-2008-3970 -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
