Format: 1.8 Date: Thu, 04 Aug 2011 10:37:00 -0400 Source: ecryptfs-utils Binary: ecryptfs-utils libecryptfs0 libecryptfs-dev Architecture: amd64 amd64_translations Version: 83-0ubuntu3.2.10.04.1 Distribution: lucid Urgency: low Maintainer: Ubuntu/amd64 Build Daemon Changed-By: Marc Deslauriers Description: ecryptfs-utils - ecryptfs cryptographic filesystem (utilities) libecryptfs-dev - ecryptfs cryptographic filesystem (development) libecryptfs0 - ecryptfs cryptographic filesystem (library) Launchpad-Bugs-Fixed: 732628 732628 732628 732628 732628 Changes: ecryptfs-utils (83-0ubuntu3.2.10.04.1) lucid-security; urgency=low . * SECURITY UPDATE: privilege escalation via mountpoint race conditions (LP: #732628) - src/utils/mount.ecryptfs_private.c: chdir into mountpoint before checking permissions. Patch thanks to Dan Rosenberg. - CVE-2011-1831 - CVE-2011-1832 * SECURITY UPDATE: race condition when checking source during mount (LP: #732628) - src/utils/mount.ecryptfs_private.c: use new ecryptfs_check_dev_ruid kernel option when mounting directory. - CVE-2011-1833 * SECURITY UPDATE: mtab corruption via improper handling (LP: #732628) - src/utils/mount.ecryptfs_private.c: modify mtab via a temp file first and make sure it succeeds before replacing the real mtab. Patch thanks to Dan Rosenberg. - CVE-2011-1834 * SECURITY UPDATE: key poisoning via insecure temp directory handling (LP: #732628) - src/utils/ecryptfs-setup-private: make sure we don't copy into a user controlled directory. - CVE-2011-1835 * SECURITY UPDATE: arbitrary file overwrite via lock counter race condition (LP: #732628) - src/utils/mount.ecryptfs_private.c: verify permissions with a file descriptor, and don't follow symlinks. - CVE-2011-1837 Checksums-Sha1: 58c1b1e7d321c95ef8405387f3f3b96fff2df6f4 113746 ecryptfs-utils_83-0ubuntu3.2.10.04.1_amd64.deb 6b591db67ee8bc33a94839eb30e6b83d5e8d0fc4 76916 libecryptfs0_83-0ubuntu3.2.10.04.1_amd64.deb 81c0c7282fbffdc4dbc9eb2703da6cb2d66473fc 71628 libecryptfs-dev_83-0ubuntu3.2.10.04.1_amd64.deb 45478066835b706b13f7581e843dec0fd8ad8a3d 1867 ecryptfs-utils_83-0ubuntu3.2.10.04.1_amd64_translations.tar.gz Checksums-Sha256: 1a2d97c4a9d2f1b1645072ce51e7ff3b39c8f5a2bd2f80f3451d492251573c12 113746 ecryptfs-utils_83-0ubuntu3.2.10.04.1_amd64.deb a6aaa09baeaafa368b68fcdcaf6fc9033fa697e5475a1c3dfcf9926aa8b674a0 76916 libecryptfs0_83-0ubuntu3.2.10.04.1_amd64.deb 8029a272fad4acd9ba565f9dd34742f08c1c1650cb09f1ea6ba368868829783a 71628 libecryptfs-dev_83-0ubuntu3.2.10.04.1_amd64.deb 4657b75408af4ef00c3deca4a840325417cb2c6e30b35332f1b473d6fd93537e 1867 ecryptfs-utils_83-0ubuntu3.2.10.04.1_amd64_translations.tar.gz Files: 1c7f8a2dfda8ae793d7b8ec0ca48fbe7 113746 misc optional ecryptfs-utils_83-0ubuntu3.2.10.04.1_amd64.deb 330b7e05c586c0c4caa4a301b24980ad 76916 libs optional libecryptfs0_83-0ubuntu3.2.10.04.1_amd64.deb 9863468a2186d4ea69e3e0747fb42cdf 71628 libdevel optional libecryptfs-dev_83-0ubuntu3.2.10.04.1_amd64.deb b92997080659ec1c06048f737885048e 1867 raw-translations - ecryptfs-utils_83-0ubuntu3.2.10.04.1_amd64_translations.tar.gz Original-Maintainer: Daniel Baumann