225 matches found
PT-2025-18819
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The issue is related to the Linux kernel's fscrypt, where the keyring is not properly destroyed after security sb delete, leading to a potential NULL dereference. This problem occurs whe...
The vulnerability of the fscrypt component in the Linux operating system’s kernel allows a hacker to trigger a service failure or increase their privileges.
The vulnerability of the fscrypt component in the Linux operating system’s kernel is related to the assignment of the zero pointer. Exploiting this vulnerability can allow an attacker to cause service failures or increase their privileges by revoking the keyrings used for encrypting ext4, f2fs, o...
SUSE CVE-2018-14616
An issue was discovered in the Linux kernel through 4.17.10. There is a NULL pointer dereference in fscryptdopagecrypto in fs/crypto/crypto.c when operating on a file in a corrupted f2fs image...
SUSE CVE-2022-25328
The bashcompletion script for fscrypt allows injection of commands via crafted mountpoint paths, allowing privilege escalation under a specific set of circumstances. A local user who has control over mountpoint paths could potentially escalate their privileges if they create a malicious mountpoin...
SUSE CVE-2022-25326
fscrypt through v0.3.2 creates a world-writable directory by default when setting up a filesystem, allowing unprivileged users to exhaust filesystem space. We recommend upgrading to fscrypt 0.3.3 or above and adjusting the permissions on existing fscrypt metadata directories where applicable...
SUSE CVE-2022-25327
The PAM module for fscrypt doesn't adequately validate fscrypt metadata files, allowing users to create malicious metadata files that prevent other users from logging in. A local user can cause a denial of service by creating a fscrypt metadata file that prevents other users from logging into the...
GSD-2022-1008098 fscrypt: stop using keyrings subsystem for fscrypt_master_key
fscrypt: stop using keyrings subsystem for fscryptmasterkey This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.10.154 by commit...
GSD-2022-1008097 fscrypt: fix keyring memory leak on mount failure
fscrypt: fix keyring memory leak on mount failure This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.10.154 by commit...
GSD-2022-1007979 fscrypt: stop using keyrings subsystem for fscrypt_master_key
fscrypt: stop using keyrings subsystem for fscryptmasterkey This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.15.78 by commit...
GSD-2022-1007978 fscrypt: fix keyring memory leak on mount failure
fscrypt: fix keyring memory leak on mount failure This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.15.78 by commit...
GSD-2022-1007832 fscrypt: stop using keyrings subsystem for fscrypt_master_key
fscrypt: stop using keyrings subsystem for fscryptmasterkey This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v6.0.8 by commit...
GSD-2022-1007830 fscrypt: fix keyring memory leak on mount failure
fscrypt: fix keyring memory leak on mount failure This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v6.0.8 by commit...
PT-2022-36353 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v5.10.154 Description: The issue concerns the use of the keyrings subsystem for fscrypt master key in fscrypt. The actual impact and attack plausibility have not yet been proven. Recommendations: For Linux Kerne...
PT-2022-36085 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v6.0.8 Description: A memory leak issue was discovered in the fscrypt keyring on mount failure. The actual impact and attack plausibility have not yet been proven. Recommendations: For Linux Kernel versions prio...
PT-2022-36234 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v5.15.78 Description: The issue concerns the use of the keyrings subsystem for fscrypt master key in fscrypt. The actual impact and attack plausibility have not yet been proven. Recommendations: For Linux Kernel...
GHSA-P93V-M2R2-4387 Denial of service via insufficient metadata validation
The PAM module for fscrypt through v0.3.2 doesn't adequately validate fscrypt metadata files, allowing users to create malicious metadata files that prevent other users from logging in. A local user can cause a denial of service by creating a fscrypt metadata file that prevents other users from...
Denial of service via insufficient metadata validation
The PAM module for fscrypt through v0.3.2 doesn't adequately validate fscrypt metadata files, allowing users to create malicious metadata files that prevent other users from logging in. A local user can cause a denial of service by creating a fscrypt metadata file that prevents other users from...
GHSA-W4F8-FXQ2-J35V Possible privilege escalation via bash completion script
The bash completion script for fscrypt through v0.3.2 allows injection of commands via crafted mountpoint paths, allowing privilege escalation under a specific set of circumstances. A local user who has control over mountpoint paths could potentially escalate their privileges if they create a...
Possible privilege escalation via bash completion script
The bash completion script for fscrypt through v0.3.2 allows injection of commands via crafted mountpoint paths, allowing privilege escalation under a specific set of circumstances. A local user who has control over mountpoint paths could potentially escalate their privileges if they create a...
GHSA-CHXF-FJCF-7FWP Possible filesystem space exhaustion by local users
fscrypt through v0.3.2 creates a world-writable directory by default when setting up a filesystem, allowing unprivileged users to exhaust filesystem space. We recommend upgrading to fscrypt v0.3.3 or above and adjusting the permissions on existing fscrypt metadata directories where applicable. Fo...