CVE-2011-0543: Certain legacy functionality in fusermount in fuse 2.8.5 and earlier, when util-linux does not support the --no-canonicalize option, allows local users to…

low3.3CVSS 3.1

AVLACMAuNCNIPAP

Certain legacy functionality in fusermount in fuse 2.8.5 and earlier, when util-linux does not support the --no-canonicalize option, allows local users to bypass intended access restrictions and unmount arbitrary directories via a symlink attack.

Affected

35 ranges· showing 25

Vendor	Product	Version range	Fixed in
debian	fuse	< fuse 2.8.5-1 (bookworm)	fuse 2.8.5-1 (bookworm)
fuse	fuse	<= 2.8.5	—
fuse	fuse	—	—
fuse	fuse	—	—
fuse	fuse	—	—
fuse	fuse	—	—
fuse	fuse	—	—
fuse	fuse	—	—
fuse	fuse	—	—
fuse	fuse	—	—
fuse	fuse	—	—
fuse	fuse	—	—
fuse	fuse	—	—
fuse	fuse	—	—
fuse	fuse	—	—
fuse	fuse	—	—
fuse	fuse	—	—
fuse	fuse	—	—
fuse	fuse	—	—
fuse	fuse	—	—
fuse	fuse	—	—
fuse	fuse	—	—
fuse	fuse	—	—
fuse	fuse	—	—
fuse	fuse	—	—

CVSS provenance

nvd3.3LOWAV:L/AC:M/Au:N/C:N/I:P/A:P

osv3.3LOW