Bugzilla – Bug 1099266
VUL-0: CVE-2018-12560: cantata: Directory traversal in the D-Bus service of cantata-mounter
Last modified: 2018-06-27 11:09:59 UTC
An issue was discovered in the cantata-mounter D-Bus service in Cantata through
2.3.1. Arbitrary unmounts can be performed by regular users via directory
traversal sequences such as a home/../sys/kernel substring.
We don't build with this option.
*** This bug has been marked as a duplicate of bug 1091824 ***