ecryptfs-utils 90-0ubuntu1 source package in Ubuntu
Changelog
ecryptfs-utils (90-0ubuntu1) oneiric; urgency=low [ Marc Deslauriers ] * SECURITY UPDATE: privilege escalation via mountpoint race conditions (LP: #732628) - debian/patches/CVE-2011-1831,1832,1834.patch: chdir into mountpoint before checking permissions in src/utils/mount.ecryptfs_private.c. - CVE-2011-1831 - CVE-2011-1832 * SECURITY UPDATE: race condition when checking source during mount (LP: #732628) - debian/patches/CVE-2011-1833.patch: use new ecryptfs_check_dev_ruid kernel option when mounting directory in src/utils/mount.ecryptfs_private.c. - CVE-2011-1833 * SECURITY UPDATE: mtab corruption via improper handling (LP: #732628) - debian/patches/CVE-2011-1831,1832,1834.patch: modify mtab via a temp file first and make sure it succeeds before replacing the real mtab in src/utils/mount.ecryptfs_private.c. - CVE-2011-1834 * SECURITY UPDATE: key poisoning via insecure temp directory handling (LP: #732628) - debian/patches/CVE-2011-1835.patch: make sure we don't copy into a user controlled directory in src/utils/ecryptfs-setup-private. - CVE-2011-1835 * SECURITY UPDATE: information disclosure via recovery mount in /tmp (LP: #732628) - debian/patches/CVE-2011-1836.patch: mount inside protected subdirectory in src/utils/ecryptfs-recover-private. - CVE-2011-1836 * SECURITY UPDATE: arbitrary file overwrite via lock counter race condition (LP: #732628) - debian/patches/CVE-2011-1837.patch: verify permissions with a file descriptor, and don't follow symlinks in src/utils/mount.ecryptfs_private.c. - CVE-2011-1837 -- Dustin Kirkland <email address hidden> Wed, 10 Aug 2011 08:36:44 -0500
Upload details
- Uploaded by:
- Dustin Kirkland
- Uploaded to:
- Oneiric
- Original maintainer:
- Ubuntu Developers
- Architectures:
- any
- Section:
- misc
- Urgency:
- Low Urgency
See full publishing history Publishing
Series | Published | Component | Section |
---|
Downloads
File | Size | SHA-256 Checksum |
---|---|---|
ecryptfs-utils_90.orig.tar.gz | 555.8 KiB | 1cdce5ab1f46b58926826dd2f733b98a5b0449d36d43d40147da96fb749cac7e |
ecryptfs-utils_90-0ubuntu1.debian.tar.gz | 18.1 KiB | 52f16ea3d4787152a5a54326cbd78553adc7e8b7b9c8de65467eff13d82eeee5 |
ecryptfs-utils_90-0ubuntu1.dsc | 2.1 KiB | 127207057bb462db49968f0481691010c714a330b6001c05d2d4ba2a076db963 |
Available diffs
- diff from 89-0ubuntu2 to 90-0ubuntu1 (141.1 KiB)
Binary packages built by this source
- ecryptfs-utils: No summary available for ecryptfs-utils in ubuntu oneiric.
No description available for ecryptfs-utils in ubuntu oneiric.
- libecryptfs-dev: No summary available for libecryptfs-dev in ubuntu oneiric.
No description available for libecryptfs-dev in ubuntu oneiric.
- libecryptfs0: No summary available for libecryptfs0 in ubuntu oneiric.
No description available for libecryptfs0 in ubuntu oneiric.