VYPR

rpm package

suse/ecryptfs-utils&distro=SUSE Linux Enterprise Server for SAP Applications 11 SP4

pkg:rpm/suse/ecryptfs-utils&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2011%20SP4

Vulnerabilities (2)

  • CVE-2016-1572HigJan 22, 2016
    affected < 61-1.35.1fixed 61-1.35.1

    mount.ecryptfs_private.c in eCryptfs-utils does not validate mount destination filesystem types, which allows local users to gain privileges by mounting over a nonstandard filesystem, as demonstrated by /proc/$pid.

  • CVE-2014-9687Mar 16, 2015
    affected < 61-1.35.1fixed 61-1.35.1

    eCryptfs 104 and earlier uses a default salt to encrypt the mount passphrase, which makes it easier for attackers to obtain user passwords via a brute force attack.