Download
| Alert*
oval:org.secpod.oval:def:1503976
ecryptfs-utils is installed oval:org.secpod.oval:def:52426 ecryptfs-utils: eCryptfs cryptographic filesystem utilities Sensitive information in encrypted home and Private directories could be exposed if an attacker gained access to your files. oval:org.secpod.oval:def:52679 ecryptfs-utils: eCryptfs cryptographic filesystem utilities mount.ecryptfs_private could be used to run programs as an administrator. oval:org.secpod.oval:def:602343 Jann Horn discovered that the setuid-root mount.ecryptfs_private helper in the ecryptfs-utils would mount over any target directory that the user owns, including a directory in procfs. A local attacker could use this flaw to escalate his privileges. oval:org.secpod.oval:def:89045299 This update for ecryptfs-utils fixes the following issues: - CVE-2016-1572: A local user could have escalated privileges by mounting over special filesystems - CVE-2014-9687: A default salt value reduced complexity of offline precomputation attacks oval:org.secpod.oval:def:600706 Several problems have been discovered in ecryptfs-utils, a cryptographic filesystem for Linux. CVE-2011-1831 Vasiliy Kulikov of Openwall and Dan Rosenberg discovered that eCryptfs incorrectly validated permissions on the requested mountpoint. A local attacker could use this flaw to mount to arbitrar ... oval:org.secpod.oval:def:702458 ecryptfs-utils: eCryptfs cryptographic filesystem utilities Sensitive information in encrypted home and Private directories could be exposed if an attacker gained access to your files. oval:org.secpod.oval:def:702940 ecryptfs-utils: eCryptfs cryptographic filesystem utilities mount.ecryptfs_private could be used to run programs as an administrator. oval:org.secpod.oval:def:601470 ecryptfs-utils is installed oval:org.secpod.oval:def:703199 ecryptfs-utils: eCryptfs cryptographic filesystem utilities eCryptfs could be made to expose sensitive information. oval:org.secpod.oval:def:51598 ecryptfs-utils: eCryptfs cryptographic filesystem utilities eCryptfs could be made to expose sensitive information. |