164 matches found
USN-3032-1: eCryptfs vulnerability
It was discovered that eCryptfs incorrectly configured the encrypted swap partition for certain drive types. An attacker could use this issue to discover sensitive information...
openSUSE Security Update : the Linux Kernel (openSUSE-2016-753)
The openSUSE Leap 42.1 kernel was updated to 4.1.26 to receive various security and bugfixes. The following security bugs were fixed : - CVE-2016-1583: Prevent the usage of mmap when the lower file system does not allow it. This could have lead to local privilege escalation when ecryptfs-utils wa...
SUSE: Security Advisory for kernel (SUSE-SU-2016:1596-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE SLED12 / SLES12 Security Update : kernel (SUSE-SU-2016:1596-1)
The SUSE Linux Enterprise 12 GA kernel was updated to fix one security issue. The following security bug was fixed : - CVE-2016-1583: Prevent the usage of mmap when the lower file system does not allow it. This could have lead to local privilege escalation when ecryptfs-utils was installed and...
SUSE-SU-2016:1596-1 Security update for the Linux Kernel
The SUSE Linux Enterprise 12 GA kernel was updated to fix one security issue. The following security bug was fixed: - CVE-2016-1583: Prevent the usage of mmap when the lower file system does not allow it. This could have lead to local privilege escalation when ecryptfs-utils was installed and...
Fedora 22 : ecryptfs-utils-109-1.fc22 (2016-7b9a2fe987)
manpage ecryptfs-migrate-home.8: Fix typos - clang static analysis fixes - Refuse to mount over non-standard filesystems. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and...
Fedora 23 : ecryptfs-utils-109-1.fc23 (2016-b02ad4e424)
manpage ecryptfs-migrate-home.8: Fix typos - clang static analysis fixes - Refuse to mount over non-standard filesystems. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and...
Fedora Update for ecryptfs-utils FEDORA-2016-7
The remote host is missing an update for the SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
openSUSE Security Update : ecryptfs-utils (openSUSE-2016-119)
This update for ecryptfs-utils fixes the following issues : - CVE-2016-1572: A local user could have escalated privileges by mounting over special filesystems bsc962052 - CVE-2014-9687: A default salt value reduced complexity of offline precomputation attacks bsc920160 This update was imported fr...
openSUSE Security Update : ecryptfs-utils (openSUSE-2016-125)
This update for ecryptfs-utils fixes the following issues : - CVE-2016-1572: A local user could have escalated privileges by mounting over special filesystems bsc962052 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from...
SUSE SLED11 / SLES11 Security Update : ecryptfs-utils (SUSE-SU-2016:0290-1)
This update for ecryptfs-utils fixes the following issues : - CVE-2016-1572: A local user could have escalated privileges by mounting over special filesystems bsc962052 - CVE-2014-9687: A default salt value reduced complexity of offline precomputation attacks bsc920160 Note that Tenable Network...
SUSE-SU-2016:0290-1 Security update for ecryptfs-utils
This update for ecryptfs-utils fixes the following issues: - CVE-2016-1572: A local user could have escalated privileges by mounting over special filesystems bsc962052 - CVE-2014-9687: A default salt value reduced complexity of offline precomputation attacks bsc920160...
SUSE SLED12 / SLES12 Security Update : ecryptfs-utils (SUSE-SU-2016:0241-1)
This update for ecryptfs-utils fixes the following issues : - CVE-2016-1572: A local user could have escalated privileges by mounting over special filesystems bsc962052 - CVE-2014-9687: A default salt value reduced complexity of offline precomputation attacks bsc920160 Note that Tenable Network...
openSUSE Security Update : ecryptfs-utils (openSUSE-2016-93)
This update for ecryptfs-utils fixes the following issues : - CVE-2016-1572: A local user could have escalated privileges by mounting over special filesystems bsc962052 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from...
SUSE-SU-2016:0241-1 Security update for ecryptfs-utils
This update for ecryptfs-utils fixes the following issues: - CVE-2016-1572: A local user could have escalated privileges by mounting over special filesystems bsc962052 - CVE-2014-9687: A default salt value reduced complexity of offline precomputation attacks bsc920160...
CVE-2016-1572
mount.ecryptfsprivate.c in eCryptfs-utils does not validate mount destination filesystem types, which allows local users to gain privileges by mounting over a nonstandard filesystem, as demonstrated by /proc/$pid...
DEBIAN-CVE-2016-1572
mount.ecryptfsprivate.c in eCryptfs-utils does not validate mount destination filesystem types, which allows local users to gain privileges by mounting over a nonstandard filesystem, as demonstrated by /proc/$pid...
CVE-2016-1572
mount.ecryptfsprivate.c in eCryptfs-utils does not validate mount destination filesystem types, which allows local users to gain privileges by mounting over a nonstandard filesystem, as demonstrated by /proc/$pid...
CVE-2016-1572
mount.ecryptfsprivate.c in eCryptfs-utils does not validate mount destination filesystem types, which allows local users to gain privileges by mounting over a nonstandard filesystem, as demonstrated by /proc/$pid...
CVE-2016-1572
CVE-2016-1572 concerns a flaw in mount.ecryptfs_private.c (ecryptfs-utils) where mount destination filesystem types are not validated, enabling a local user to gain privileges by mounting over a nonstandard filesystem (example: /proc/$pid). The vulnerability has been discussed in multiple advisor...