CVE-2019-13179
CVE-2019-13179 affects Calamares versions 3.1 to 3.2.10. The root cause is that Calamares copies the LUKS keyfile at /crypto_keyfile.bin (mode 0600, root-owned) into /boot inside a globally readable initramfs image, making the key accessible to any user and exposing decryption keys for LUKS conta...