CDrummond/cantata

CDrummond/cantata

Releases12

Frequency6 months 2 weeks

Last Release over 4 years ago

Stars1.05K

Qt5 Graphical MPD Client

Log in to subscribe

CVE History

CVE	Published	CVSS v3	CVSS v2
CVE-2018-12559 ↗	Jun 19, 2018Tuesday, 19 June 2018, 05:29	—	6.5 MEDIUM
An issue was discovered in the cantata-mounter D-Bus service in Cantata through 2.3.1. The mount target path check in mounter.cpp `mpOk()` is insufficient. A regular user can consequently mount a CIFS filesystem anywhere (e.g., outside of the /home directory tree) by passing directory traversal sequences such as a home/../usr substring.
CVE-2018-12561 ↗	Jun 19, 2018Tuesday, 19 June 2018, 05:29	—	6.5 MEDIUM
An issue was discovered in the cantata-mounter D-Bus service in Cantata through 2.3.1. A regular user can inject additional mount options such as file_mode= by manipulating (for example) the domain parameter of the samba URL.
CVE-2018-12562 ↗	Jun 19, 2018Tuesday, 19 June 2018, 05:29	—	7.5 HIGH
An issue was discovered in the cantata-mounter D-Bus service in Cantata through 2.3.1. The wrapper script 'mount.cifs.wrapper' uses the shell to forward the arguments to the actual mount.cifs binary. The shell evaluates wildcards (such as in an injected string:/home/../tmp/* string).