ArchLinux: 201705-11: smb4k: privilege escalation
Summary
Smb4k <= 2.0.0 contains a logic flaw in which mount helper binary does not properly verify the mount command it is being asked to run. This allows calling any other binary as root since the mount helper is typically installed as suid.
Resolution
Upgrade to 2.0.0-2.
# pacman -Syu "smb4k>=2.0.0-2"
The problem has been fixed upstream but no release is available yet.
References
https://kde.org/info/security/advisory-20170510-2.txt https://seclists.org/oss-sec/2017/q2/240 https://invent.kde.org/network/smb4k/-/commit/a90289b0962663bc1d247bbbd31b9e65b2ca000e https://security.archlinux.org/CVE-2017-8849
Workaround
None.