1 files changed, 7 insertions, 1 deletions
diff --git a/src/firejail/fs.c b/src/firejail/fs.c
index 712e5fb0a..801bde57c 100644
--- a/src/firejail/fs.c
+++ b/src/firejail/fs.c
@@ -471,7 +471,13 @@ void fs_noexec(const char *dir) {
        }
 }
+// Disable /mnt, /media, /run/mount and /run/media access
+void fs_mnt(void) {
+        disable_file(BLACKLIST_FILE, "/mnt");
+        disable_file(BLACKLIST_FILE, "/media");
+        disable_file(BLACKLIST_FILE, "/run/mount");
+        disable_file(BLACKLIST_FILE, "//run/media");
+}
 // mount /proc and /sys directories
 void fs_proc_sys_dev_boot(void) {

diff --git a/src/firejail/fs.c b/src/firejail/fs.c index 712e5fb0a..801bde57c 100644 --- a/src/firejail/fs.c +++ b/src/firejail/fs.c
@@ -471,7 +471,13 @@ void fs_noexec(const char *dir) {
471	}	471	}
472	}	472	}
473		473
474		474	// Disable /mnt, /media, /run/mount and /run/media access
		475	void fs_mnt(void) {
		476	disable_file(BLACKLIST_FILE, "/mnt");
		477	disable_file(BLACKLIST_FILE, "/media");
		478	disable_file(BLACKLIST_FILE, "/run/mount");
		479	disable_file(BLACKLIST_FILE, "//run/media");
		480	}
475		481
476	// mount /proc and /sys directories	482	// mount /proc and /sys directories
477	void fs_proc_sys_dev_boot(void) {	483	void fs_proc_sys_dev_boot(void) {