eCryptfs-utils 79

CPE Details

eCryptfs-utils 79
ecryptfs
ecryptfs-utils
79
2020-06-25
10h58 +00:00
2020-06-25
10h58 +00:00
CPE NVD
Alerte pour un CPE
Stay informed of any changes for a specific CPE.
Notifications manage

CPE Name: cpe:2.3:a:ecryptfs:ecryptfs-utils:79:*:*:*:*:*:*:*

Informations

Vendor

ecryptfs

Product

ecryptfs-utils

Version

79

Related CVE

Open and find in CVE List

CVE ID Published Description Score Severity
CVE-2015-8946 2016-07-22 12h00 +00:00 ecryptfs-setup-swap in eCryptfs before 111 does not prevent the unencrypted swap partition from activating during boot when using GPT partitioning and certain versions of systemd, which allows local users to obtain sensitive information via unspecified vectors.
3.3
Low
CVE-2016-6224 2016-07-22 12h00 +00:00 ecryptfs-setup-swap in eCryptfs does not prevent the unencrypted swap partition from activating during boot when using GPT partitioning on a (1) NVMe or (2) MMC drive, which allows local users to obtain sensitive information via unspecified vectors. NOTE: this vulnerability exists because of an incomplete fix for CVE-2015-8946.
3.3
Low
CVE-2016-1572 2016-01-22 14h00 +00:00 mount.ecryptfs_private.c in eCryptfs-utils does not validate mount destination filesystem types, which allows local users to gain privileges by mounting over a nonstandard filesystem, as demonstrated by /proc/$pid.
8.4
High
CVE-2014-9687 2015-03-16 13h00 +00:00 eCryptfs 104 and earlier uses a default salt to encrypt the mount passphrase, which makes it easier for attackers to obtain user passwords via a brute force attack.
5
CVE-2011-1831 2014-02-15 10h00 +00:00 utils/mount.ecryptfs_private.c in ecryptfs-utils before 90 does not properly check mountpoint permissions, which allows local users to effectively replace any directory with a new filesystem, and consequently gain privileges, via a mount system call.
4.6
CVE-2011-1832 2014-02-15 10h00 +00:00 utils/mount.ecryptfs_private.c in ecryptfs-utils before 90 does not properly check mountpoint permissions, which allows local users to remove directories via a umount system call.
2.1
CVE-2011-1834 2014-02-15 10h00 +00:00 utils/mount.ecryptfs_private.c in ecryptfs-utils before 90 does not properly maintain the mtab file during error conditions, which allows local users to cause a denial of service (table corruption) or bypass intended unmounting restrictions via a umount system call.
2.1
CVE-2011-1835 2014-02-15 10h00 +00:00 The encrypted private-directory setup process in utils/ecryptfs-setup-private in ecryptfs-utils before 90 does not properly ensure that the passphrase file is created, which might allow local users to bypass intended access restrictions at a certain time in the new-user creation steps.
4.4
CVE-2011-1836 2014-02-15 10h00 +00:00 utils/ecryptfs-recover-private in ecryptfs-utils before 90 does not establish a subdirectory with safe permissions, which might allow local users to bypass intended access restrictions via standard filesystem operations during the recovery process.
4.6
CVE-2011-1837 2014-02-15 10h00 +00:00 The lock-counter implementation in utils/mount.ecryptfs_private.c in ecryptfs-utils before 90 allows local users to overwrite arbitrary files via unspecified vectors.
3.6