*** This bug is a security vulnerability ***
You have been subscribed to a public security bug by Marc Deslauriers
(mdeslaur):
Binary package hint: usb-creator-common
/usr/share/usb-creator/usb-creator-helper exposes a method called
UnmountFile over D-Bus which passes its argument directly to umount.
This lets any user unmount an arbitrary filesystem by running something
like:
dbus-send --system --type=method_call --print-reply
--dest=com.ubuntu.USBCreator /com/ubuntu/USBCreator
com.ubuntu.USBCreator.UnmountFile string:/boot
** Affects: usb-creator (Ubuntu)
Importance: High
Assignee: Kees Cook (kees)
Status: Fix Released
--
usb-creator-helper allows any user to umount any filesystem
https://bugs.launchpad.net/bugs/771553
You received this bug notification because you are a member of Ubuntu Bugs,
which is a direct subscriber.
--
ubuntu-bugs mailing list
ubuntu-bugs@lists.ubuntu.com
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
