rpm package
opensuse/ecryptfs-utils&distro=openSUSE Tumbleweed
pkg:rpm/opensuse/ecryptfs-utils&distro=openSUSE%20Tumbleweed
Vulnerabilities (9)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2016-1572 | Hig | 8.4 | < 108-2.5 | 108-2.5 | Jan 22, 2016 | mount.ecryptfs_private.c in eCryptfs-utils does not validate mount destination filesystem types, which allows local users to gain privileges by mounting over a nonstandard filesystem, as demonstrated by /proc/$pid. | |
| CVE-2014-9687 | — | < 108-2.5 | 108-2.5 | Mar 16, 2015 | eCryptfs 104 and earlier uses a default salt to encrypt the mount passphrase, which makes it easier for attackers to obtain user passwords via a brute force attack. | ||
| CVE-2011-1837 | — | < 108-2.5 | 108-2.5 | Feb 15, 2014 | The lock-counter implementation in utils/mount.ecryptfs_private.c in ecryptfs-utils before 90 allows local users to overwrite arbitrary files via unspecified vectors. | ||
| CVE-2011-1836 | — | < 108-2.5 | 108-2.5 | Feb 15, 2014 | utils/ecryptfs-recover-private in ecryptfs-utils before 90 does not establish a subdirectory with safe permissions, which might allow local users to bypass intended access restrictions via standard filesystem operations during the recovery process. | ||
| CVE-2011-1835 | — | < 108-2.5 | 108-2.5 | Feb 15, 2014 | The encrypted private-directory setup process in utils/ecryptfs-setup-private in ecryptfs-utils before 90 does not properly ensure that the passphrase file is created, which might allow local users to bypass intended access restrictions at a certain time in the new-user creation | ||
| CVE-2011-1834 | — | < 108-2.5 | 108-2.5 | Feb 15, 2014 | utils/mount.ecryptfs_private.c in ecryptfs-utils before 90 does not properly maintain the mtab file during error conditions, which allows local users to cause a denial of service (table corruption) or bypass intended unmounting restrictions via a umount system call. | ||
| CVE-2011-1832 | — | < 108-2.5 | 108-2.5 | Feb 15, 2014 | utils/mount.ecryptfs_private.c in ecryptfs-utils before 90 does not properly check mountpoint permissions, which allows local users to remove directories via a umount system call. | ||
| CVE-2011-1831 | — | < 108-2.5 | 108-2.5 | Feb 15, 2014 | utils/mount.ecryptfs_private.c in ecryptfs-utils before 90 does not properly check mountpoint permissions, which allows local users to effectively replace any directory with a new filesystem, and consequently gain privileges, via a mount system call. | ||
| CVE-2011-1833 | — | < 108-2.5 | 108-2.5 | Oct 3, 2012 | Race condition in the ecryptfs_mount function in fs/ecryptfs/main.c in the eCryptfs subsystem in the Linux kernel before 3.1 allows local users to bypass intended file permissions via a mount.ecryptfs_private mount with a mismatched uid. |
- affected < 108-2.5fixed 108-2.5
mount.ecryptfs_private.c in eCryptfs-utils does not validate mount destination filesystem types, which allows local users to gain privileges by mounting over a nonstandard filesystem, as demonstrated by /proc/$pid.
- CVE-2014-9687Mar 16, 2015affected < 108-2.5fixed 108-2.5
eCryptfs 104 and earlier uses a default salt to encrypt the mount passphrase, which makes it easier for attackers to obtain user passwords via a brute force attack.
- CVE-2011-1837Feb 15, 2014affected < 108-2.5fixed 108-2.5
The lock-counter implementation in utils/mount.ecryptfs_private.c in ecryptfs-utils before 90 allows local users to overwrite arbitrary files via unspecified vectors.
- CVE-2011-1836Feb 15, 2014affected < 108-2.5fixed 108-2.5
utils/ecryptfs-recover-private in ecryptfs-utils before 90 does not establish a subdirectory with safe permissions, which might allow local users to bypass intended access restrictions via standard filesystem operations during the recovery process.
- CVE-2011-1835Feb 15, 2014affected < 108-2.5fixed 108-2.5
The encrypted private-directory setup process in utils/ecryptfs-setup-private in ecryptfs-utils before 90 does not properly ensure that the passphrase file is created, which might allow local users to bypass intended access restrictions at a certain time in the new-user creation
- CVE-2011-1834Feb 15, 2014affected < 108-2.5fixed 108-2.5
utils/mount.ecryptfs_private.c in ecryptfs-utils before 90 does not properly maintain the mtab file during error conditions, which allows local users to cause a denial of service (table corruption) or bypass intended unmounting restrictions via a umount system call.
- CVE-2011-1832Feb 15, 2014affected < 108-2.5fixed 108-2.5
utils/mount.ecryptfs_private.c in ecryptfs-utils before 90 does not properly check mountpoint permissions, which allows local users to remove directories via a umount system call.
- CVE-2011-1831Feb 15, 2014affected < 108-2.5fixed 108-2.5
utils/mount.ecryptfs_private.c in ecryptfs-utils before 90 does not properly check mountpoint permissions, which allows local users to effectively replace any directory with a new filesystem, and consequently gain privileges, via a mount system call.
- CVE-2011-1833Oct 3, 2012affected < 108-2.5fixed 108-2.5
Race condition in the ecryptfs_mount function in fs/ecryptfs/main.c in the eCryptfs subsystem in the Linux kernel before 3.1 allows local users to bypass intended file permissions via a mount.ecryptfs_private mount with a mismatched uid.