pam_mount upstream released new version 0.47 that re-adds luserconf option security checks, that got dropped during the code rewrite in version 0.10. This allowed users to mount arbitrary sources onto arbitrary directories; normally, they can only do so when they own the mountpoint, and own the source, or the source is a non-local mount. References: https://sourceforge.net/project/shownotes.php?release_id=624240 http://sourceforge.net/forum/forum.php?forum_id=863797 http://www.openwall.com/lists/oss-security/2008/09/06/1 http://www.openwall.com/lists/oss-security/2008/09/06/3 Upstream patch: http://dev.medozas.de/gitweb.cgi?p=pam_mount;a=commitdiff;h=33b91d7659ae3aa78b1e94fd3f8e545ae5ff25db
Announcement mails sent to pam-mount-user list: http://sourceforge.net/mailarchive/message.php?msg_name=alpine.LNX.1.10.0809042353120.17569%40fbirervta.pbzchgretzou.qr
libHX-1.23-1.fc8, pam_mount-0.47-1.fc8 has been pushed to the Fedora 8 stable repository. If problems still persist, please make note of it in this bug report.
libHX-1.23-1.fc9, pam_mount-0.47-1.fc9 has been pushed to the Fedora 9 stable repository. If problems still persist, please make note of it in this bug report.
This issue was addressed in: Fedora: https://admin.fedoraproject.org/updates/F8/FEDORA-2008-7973 https://admin.fedoraproject.org/updates/F9/FEDORA-2008-7976