ecryptfs-utils 99-0ubuntu1 source package in Ubuntu
Changelog
ecryptfs-utils (99-0ubuntu1) quantal; urgency=low [ Dustin Kirkland ] * debian/ecryptfs-utils.postinst: LP: #936093 - ensure desktop file is executable * precise [ Wesley Wiedenmeier ] * src/utils/mount.ecryptfs.c: LP: #329264 - remove old hack, that worked around a temporary kernel regression; ensure that all mount memory is mlocked [ Sebastian Krahmer ] * src/pam_ecryptfs/pam_ecryptfs.c: LP: #732614 - drop group privileges in the same places that user privileges are dropped - check return status of setresuid() calls and return if they fail - drop privileges before checking for the existence of ~/.ecryptfs/auto-mount to prevent possible file existence leakage by a symlink to a path that typically would not be searchable by the user - drop privileges before reading salt from the rc file to prevent the leakage of root's salt and, more importantly, using the incorrect salt - discovered, independently, by Vasiliy Kulikov and Sebastian Krahmer * src/pam_ecryptfs/pam_ecryptfs.c: LP: #1020904 - after dropping privileges, clear the environment before executing the private eCryptfs mount helper - discovered by Sebastian Krahmer * src/utils/mount.ecryptfs_private.c: LP: #1020904 - do not allow private eCryptfs mount aliases to contain ".." characters as a preventative measure against a crafted file path being used as an alias - force the MS_NOSUID mount flag to protect against user controlled lower filesystems, such as an auto mounted USB drive, that may contain a setuid-root binary + CVE-2012-3409 - force the MS_NODEV mount flag - after dropping privileges, clear the environment before executing umount - discovered by Sebastian Krahmer [ Tyler Hicks ] * src/libecryptfs/key_management.c: LP: #732614 - zero statically declared buffers to prevent the leakage of stack contents in the case of a short file read - discovered by Vasiliy Kulikov * src/libecryptfs/module_mgr.c, src/pam_ecryptfs/pam_ecryptfs.c: - fix compiler warnings -- Dustin Kirkland <email address hidden> Fri, 13 Jul 2012 09:52:36 -0500
Upload details
- Uploaded by:
- Dustin Kirkland
- Uploaded to:
- Quantal
- Original maintainer:
- Dustin Kirkland
- Architectures:
- any
- Section:
- misc
- Urgency:
- Low Urgency
See full publishing history Publishing
Series | Published | Component | Section |
---|
Downloads
File | Size | SHA-256 Checksum |
---|---|---|
ecryptfs-utils_99.orig.tar.gz | 595.7 KiB | 145f8aae31c1a03036297f8a15aa2a127c09589765a16dfb551b8d1e7abe6154 |
ecryptfs-utils_99-0ubuntu1.debian.tar.gz | 22.3 KiB | 9c3bdc62370eb0434acd3b7baf7bb4e50f8c8f7d531ecc5850ac7ea7cc4dc216 |
ecryptfs-utils_99-0ubuntu1.dsc | 2.3 KiB | c4033d394dc563f3e05df80e1b80448f0a3d164272df0fe98fea965f506aa516 |
Available diffs
- diff from 98-0ubuntu1 to 99-0ubuntu1 (5.6 KiB)
Binary packages built by this source
- ecryptfs-utils: No summary available for ecryptfs-utils in ubuntu quantal.
No description available for ecryptfs-utils in ubuntu quantal.
- ecryptfs-utils-dbg: No summary available for ecryptfs-utils-dbg in ubuntu quantal.
No description available for ecryptfs-utils-dbg in ubuntu quantal.
- libecryptfs-dev: No summary available for libecryptfs-dev in ubuntu quantal.
No description available for libecryptfs-dev in ubuntu quantal.
- libecryptfs0: No summary available for libecryptfs0 in ubuntu quantal.
No description available for libecryptfs0 in ubuntu quantal.
- python-ecryptfs: No summary available for python-ecryptfs in ubuntu quantal.
No description available for python-ecryptfs in ubuntu quantal.