12 matches found
EUVD-2011-3113
Malware in sbrugna...
Privilege Escalation
encryptfs-utils is vulnerable to privilege escalation. A race condition flaw was found in the way mount.ecryptfsprivate checked the permissions of a requested mount point when mounting an encrypted file system. A local attacker could possibly use this flaw to escalate their privileges by mounting...
CVE-2011-3145
When mount.ecrpytfsprivate before version 87-0ubuntu1.2 calls setreuid it doesn't also set the effective group id. So when it creates the new version, mtab.tmp, it's created with the group id of the user running mount.ecryptfsprivate...
Code injection
When mount.ecrpytfsprivate before version 87-0ubuntu1.2 calls setreuid it doesn't also set the effective group id. So when it creates the new version, mtab.tmp, it's created with the group id of the user running mount.ecryptfsprivate...
CVE-2011-3145 mount.ecrpytfs_private sets group owner of /etc/mtab to user's primary group
When mount.ecrpytfsprivate before version 87-0ubuntu1.2 calls setreuid it doesn't also set the effective group id. So when it creates the new version, mtab.tmp, it's created with the group id of the user running mount.ecryptfsprivate...
Ubuntu: Security Advisory (USN-2876-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
[SECURITY] [DLA 397-1] ecryptfs-utils security update
Package : ecryptfs-utils Version : 83-4+squeeze2 CVE ID : CVE-2016-1572 Jann Horn discovered that the setuid-root mount.ecryptfsprivate helper in the ecryptfs-utils would mount over any target directory that the user owns, including a directory in procfs. A local attacker could use this flaw to...
[SECURITY] [DSA 3450-1] ecryptfs-utils security update
------------------------------------------------------------------------- Debian Security Advisory DSA-3450-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso January 20, 2016 https://www.debian.org/security/faq -...
DSA-3450-1 ecryptfs-utils - security update
Bulletin has no description...
Race condition
Race condition in the ecryptfsmount function in fs/ecryptfs/main.c in the eCryptfs subsystem in the Linux kernel before 3.1 allows local users to bypass intended file permissions via a mount.ecryptfsprivate mount with a mismatched uid...
CentOS Update for kernel CESA-2011:1386 centos5 x86_64
Check for the Version of kernel OpenVAS Vulnerability Test CentOS Update for kernel CESA-2011:1386 centos5 x8664 Authors: System Generated Check Copyright: Copyright c 2012 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it...
RedHat Update for ecryptfs-utils RHSA-2011:1241-01
The remote host is missing an update for the Copyright C 2011 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...