Re: Re: CVE request for Calibre

[Kurt Seifried <kseifried () redhat com>]

On 11/03/2011 05:14 AM, Dan Rosenberg wrote:
> > Oh, and I suppose there's a very obvious but critical #6:
> >
> > 6. An unprivileged user an mount/unmount/eject whatever he wants, with
> > root permissions. Danger.
> >
> > This may help to "confirm":
> > https://bugs.launchpad.net/calibre/+bug/885027/
> >
> >
> > As well, the maintainer has already issued a fix. From the bug report:
> > "Fixed in branch lp:calibre. The fix will be in the next release.
> > calibre is usually released every Friday.", which means the above
> > source link, that went to the trunk, now shows the fixed result. The
> > old broken code is still available here:
> > http://bazaar.launchpad.net/~kovid/calibre/trunk/view/9675/src/calibre/devices/linux_mount_helper.c
> >
> > Note that the maintainer has chosen only to address #5.
> I'd recommend holding off on the CVE assignments for now, since these
> issues are currently in progress and the final tally of issues isn't
> complete.
>
> -Dan
I took a quick look at that, I'm not clear on which ones have
beenaddressed , if you could comment on the original issues, which are
addressed and link to code commit I can start assigning CVEs.

-- 

-Kurt Seifried / Red Hat Security Response Team