-
ecryptfs-utils (111-0ubuntu4) yakkety; urgency=medium
* Drop the hard-coded libnss3-1d dependency.
-- Matthias Klose <email address hidden> Tue, 13 Sep 2016 11:34:34 +0200
-
ecryptfs-utils (111-0ubuntu3) yakkety; urgency=medium
* No-change rebuild for NSS.
-- Matthias Klose <email address hidden> Tue, 13 Sep 2016 09:34:49 +0200
-
ecryptfs-utils (111-0ubuntu2) yakkety; urgency=medium
* SECURITY UPDATE: Information exposure via unencrypted swap partitions. The
swap partition was not configured to use encryption when GPT partitioning
was in use on NVMe and MMC drives.
- debian/patches/CVE-2016-6224.patch: Properly handle the formatting of
the path to swap partitions on NVMe and MMC drives so that they're
correctly marked as not to be automatically mounted by systemd. Based on
upstream patch from Jason Gerard DeRose. (LP: #1597154)
- debian/ecryptfs-utils.postinst: Fix any unencrypted GPT swap partitions
that have mistakenly remained marked as auto mount. This should only
modify the swap partitions on systems that ecryptfs-setup-swap has been
used on. (LP: #1447282, LP: #1597154)
- CVE-2016-6224
-- Tyler Hicks <email address hidden> Thu, 14 Jul 2016 18:48:53 -0500
-
ecryptfs-utils (111-0ubuntu1) xenial; urgency=medium
* src/utils/ecryptfs-setup-private: LP: #1328689
- fix a long standing bug, where setting up an encrypted private,
encrypted home, or migrating to an encrypted home did not work
correctly over ssh sessions
- the root cause of the bug is some complexity in the handling of
user keyrings and session keyrings
- the long term solution would be to correctly use session keyrings
- the short term solution is to continue linking user and session
keyrings
* xenial
-- Dustin Kirkland <email address hidden> Fri, 26 Feb 2016 17:58:16 -0600
