Your message dated Tue, 19 Jun 2018 02:33:55 +
with message-id
and subject line Bug#901798: fixed in cantata 2.3.0.ds1-2
has caused the Debian Bug report #901798,
regarding cantata: source contains insecure mount.cifs wrapper, cantata-mounter
to be marked as done.
This means that you claim
If you are not able to see this mail, click
http://r.newsletter.bonescamail.nl/8l118i4imoatrf.html[ ](
http://r.newsletter.bonescamail.nl/mk/cl/PIkl85wjRV6H6Fw1txeKbKzsSlUrl-KMjTg2WhX_LKNDJZDzNL5RXxb5ielTtWFpGnvSr39gmnD-kXSIVb9a6B4VyYV6kj_2Zc0pTf8T9NrpzR3Oae8ixdggoeA
)
[ Click here for
Your message dated Mon, 18 Jun 2018 20:17:29 +
with message-id
and subject line Bug#831551: fixed in soundmanager2 2.97a.20150601+dfsg2-2
has caused the Debian Bug report #831551,
regarding soundmanager2: mtasc removal
to be marked as done.
This means that you claim that the problem has been
Processing control commands:
> severity -1 grave
Bug #901798 [src:cantata] cantata: source contains insecure mount.cifs wrapper,
cantata-mounter
Severity set to 'grave' from 'important'
--
901798: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=901798
Debian Bug Tracking System
Contact
Control: severity -1 grave
Hi Simon,
[not the maintainer here]
On Mon, Jun 18, 2018 at 02:14:03PM +0100, Simon McVittie wrote:
> Source: cantata
> Version: 2.3.0.ds1-1
> Severity: important
> Tags: security
>
> cantata contains a helper program cantata-mounter
> which runs as root (via D-Bus
Source: cantata
Version: 2.3.0.ds1-1
Severity: important
Tags: security
cantata contains a helper program cantata-mounter
which runs as root (via D-Bus activation) and allows
unprivileged users to do privileged mount operations via D-Bus
IPC. This turns out to have several security
