-
Thu May 23 2019 John Mcwalters <john.mcwalters@oracle.com> - 2.9.7-12.0.1
- Import patches from 2.9.4-1.0.7:
Security Update based on ELSA-2018-3324 fuse: bypass of the "user_allow_other"
restriction when SELinux is active. [CVE-2018-10906]
When SELinux is active, fusermount is vulnerable to a restriction bypass. This allows
non-root users to mount a FUSE file system with the 'allow_other' mount option
regardless of whether 'user_allow_other' is set in the fuse configuration.
When checking whether allow_other/allow_root are allowed, fusermount lets users escape
commas, even when the mount options do not permit backslashes. This allows a malicious
user to hide options forbidden by fusermount. By using specially crafted values in the
`context` mount option interpreted by SELinux, it is possible to use a backslash and
smuggle the `allow_other` mount option.
added patches:
fuse-0002-fusermount-refuse-unknown-options.patch
-
Thu Nov 08 2018 Miklos Szeredi <mszeredi@redhat.com> - 2.9.7-12
- Fixed CVE-2018-10906 (rhbz#1607855)
- Fix regression from RHEL7 (rhbz#1648280)
-
Wed Feb 07 2018 Fedora Release Engineering <releng@fedoraproject.org> - 2.9.7-11
- Rebuilt for https://fedoraproject.org/wiki/Fedora_28_Mass_Rebuild
-
Thu Nov 16 2017 Tom Callaway <spot@fedoraproject.org> 2.9.7-10
- update fuse3 to 3.2.1
-
Mon Aug 07 2017 Tom Callaway <spot@fedoraproject.org> 2.9.7-9
- update fuse3 to 3.1.1
-
Wed Aug 02 2017 Fedora Release Engineering <releng@fedoraproject.org> - 2.9.7-8
- Rebuilt for https://fedoraproject.org/wiki/Fedora_27_Binutils_Mass_Rebuild
-
Fri Jul 28 2017 Tom Callaway <spot@fedoraproject.org> - 2.9.7-7
- use -D_FILE_OFFSET_BITS=64 to force off_t to be 64bit on 32bit arches
-
Wed Jul 26 2017 Fedora Release Engineering <releng@fedoraproject.org> - 2.9.7-6
- Rebuilt for https://fedoraproject.org/wiki/Fedora_27_Mass_Rebuild
-
Mon Jul 17 2017 Tom Callaway <spot@fedoraproject.org> - 3.1.0-5
- update to 3.1.0
-
Thu Jun 01 2017 Tom Callaway <spot@fedoraproject.org> - 3.0.2-4
- update to 3.0.2