EulerOS Virtualization 2.9.0 : cryptsetup (EulerOS-SA-2021-1656)

According to the version of the cryptsetup packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerability : - A vulnerability was found in upstream release cryptsetup-2.2.0 where, there's a bug in LUKS2 format validation code, that is...

NewStart CGSL MAIN 6.02 : cryptsetup Vulnerability (NS-SA-2021-0087)

"The remote NewStart CGSL host, running version MAIN 6.02, has cryptsetup packages installed that are affected by a vulnerability: - A vulnerability was found in upstream release cryptsetup-2.2.0 where, there's a bug in LUKS2 format validation code, that is effectively invoked on every device/ima...

EulerOS Virtualization 2.9.1 : cryptsetup (EulerOS-SA-2021-1594)

According to the version of the cryptsetup package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerability : - A vulnerability was found in upstream release cryptsetup-2.2.0 where, there's a bug in LUKS2 format validation code, that is...

CentOS 8 : cryptsetup (CESA-2020:4542)

The remote CentOS Linux 8 host has packages installed that are affected by a vulnerability as referenced in the CESA-2020:4542 advisory. - cryptsetup: Out-of-bounds write when validating segments CVE-2020-14382 Note that Nessus has not tested for this issue but has instead relied only on the...

cryptsetup: Out-of-bounds write when validating segments

A flaw was found in the way cryptsetup parses encrypted images with invalid segments. This flaw allows a local attacker to crash an application compiled with cryptsetup, or in some cases, cause arbitrary code execution when parsing specially crafted encrypted images. The highest threat from this...

Moderate: Red Hat Security Advisory: cryptsetup security update

An update for cryptsetup is now available for Red Hat Enterprise Linux 8.2 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available f...

RHEL 8 : cryptsetup (RHSA-2021:0258)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2021:0258 advisory. The cryptsetup packages provide a utility for setting up disk encryption using the dm-crypt kernel module. Security Fixes: cryptsetup: Out-of-bounds...

How to make a software BTRFS RAID1 with LUKS2 FDE

The guide below is simplified in a way that preparing the boot partition is not covered. Software based btrfs RAID1 requires two devices, which conceptually dont even need to be on different disks. But for obvious reasons, its a good idea if they are… Having mirroring against encrypted storage...

Oracle Linux 8 : cryptsetup (ELSA-2020-4542)

The remote Oracle Linux 8 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2020-4542 advisory. 2.3.3-2 - patch: Fix possible memory corruption in LUKS2 validation code in 32bit library. - Resolves: 1872294 2.3.3-1 - Update to cryptsetup 2.3.3 - Resolves:...

cryptsetup security, bug fix, and enhancement update

2.3.3-2 - patch: Fix possible memory corruption in LUKS2 validation code in 32bit library. - Resolves: 1872294 2.3.3-1 - Update to cryptsetup 2.3.3 - Resolves: 1796826 1743891 1785748 2.3.1-1 - Update to cryptsetup 2.3.1 - Resolves: 1796826 1743891 1785748...

Moderate: Red Hat Security Advisory: cryptsetup security update

An update for cryptsetup is now available for Red Hat Enterprise Linux 8.1 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available f...

cryptsetup: Out-of-bounds write when validating segments

A flaw was found in the way cryptsetup parses encrypted images with invalid segments. This flaw allows a local attacker to crash an application compiled with cryptsetup, or in some cases, cause arbitrary code execution when parsing specially crafted encrypted images. The highest threat from this...

Moderate: Red Hat Security Advisory: cryptsetup security, bug fix, and enhancement update

An update for cryptsetup is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from...

cryptsetup: Out-of-bounds write when validating segments

A flaw was found in the way cryptsetup parses encrypted images with invalid segments. This flaw allows a local attacker to crash an application compiled with cryptsetup, or in some cases, cause arbitrary code execution when parsing specially crafted encrypted images. The highest threat from this...

RHEL 8 : cryptsetup (RHSA-2020:4542)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2020:4542 advisory. The cryptsetup packages provide a utility for setting up disk encryption using the dm-crypt kernel module. The following packages have been upgraded ...

Huawei EulerOS: Security Advisory for cryptsetup (EulerOS-SA-2020-2427)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Huawei EulerOS: Security Advisory for cryptsetup (EulerOS-SA-2020-2409)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

RHEL 8 : cryptsetup (RHSA-2020:4900)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2020:4900 advisory. The cryptsetup packages provide a utility for setting up disk encryption using the dm-crypt kernel module. Security Fixes: cryptsetup: Out-of-bounds...

Moderate: cryptsetup security, bug fix, and enhancement update

The cryptsetup packages provide a utility for setting up disk encryption using the dm-crypt kernel module. The following packages have been upgraded to a later upstream version: cryptsetup 2.3.3. BZ1796826 Security Fixes: cryptsetup: Out-of-bounds write when validating segments CVE-2020-14382 For...

EulerOS 2.0 SP9 : cryptsetup (EulerOS-SA-2020-2427)

According to the version of the cryptsetup packages installed, the EulerOS installation on the remote host is affected by the following vulnerability : - A vulnerability was found in upstream release cryptsetup-2.2.0 where, there's a bug in LUKS2 format validation code, that is effectively invoke...