Summary
| Detail | |||
|---|---|---|---|
| Vendor | Ecryptfs | First view | 2008-11-20 |
| Product | Ecryptfs Utils | Last view | 2014-02-15 |
| Version | 59 | Type | Application |
| Update | * | ||
| Edition | * | ||
| Language | * | ||
| Sofware Edition | * | ||
| Target Software | * | ||
| Target Hardware | * | ||
| Other | * | ||
| CPE Product | cpe:2.3:a:ecryptfs:ecryptfs_utils | ||
Activity : Overall
Related : CVE
| Date | Alert | Description | |
|---|---|---|---|
| 3.6 | 2014-02-15 | CVE-2011-1837 | The lock-counter implementation in utils/mount.ecryptfs_private.c in ecryptfs-utils before 90 allows local users to overwrite arbitrary files via unspecified vectors. |
| 4.6 | 2014-02-15 | CVE-2011-1836 | utils/ecryptfs-recover-private in ecryptfs-utils before 90 does not establish a subdirectory with safe permissions, which might allow local users to bypass intended access restrictions via standard filesystem operations during the recovery process. |
| 4.4 | 2014-02-15 | CVE-2011-1835 | The encrypted private-directory setup process in utils/ecryptfs-setup-private in ecryptfs-utils before 90 does not properly ensure that the passphrase file is created, which might allow local users to bypass intended access restrictions at a certain time in the new-user creation steps. |
| 2.1 | 2014-02-15 | CVE-2011-1834 | utils/mount.ecryptfs_private.c in ecryptfs-utils before 90 does not properly maintain the mtab file during error conditions, which allows local users to cause a denial of service (table corruption) or bypass intended unmounting restrictions via a umount system call. |
| 2.1 | 2014-02-15 | CVE-2011-1832 | utils/mount.ecryptfs_private.c in ecryptfs-utils before 90 does not properly check mountpoint permissions, which allows local users to remove directories via a umount system call. |
| 4.6 | 2014-02-15 | CVE-2011-1831 | utils/mount.ecryptfs_private.c in ecryptfs-utils before 90 does not properly check mountpoint permissions, which allows local users to effectively replace any directory with a new filesystem, and consequently gain privileges, via a mount system call. |
| 7.2 | 2008-11-20 | CVE-2008-5188 | The (1) ecryptfs-setup-private, (2) ecryptfs-setup-confidential, and (3) ecryptfs-setup-pam-wrapped.sh scripts in ecryptfs-utils 45 through 61 in eCryptfs place cleartext passwords on command lines, which allows local users to obtain sensitive information by listing the process. |
CWE : Common Weakness Enumeration
| % | id | Name |
|---|---|---|
| 71% (5) | CWE-264 | Permissions, Privileges, and Access Controls |
| 28% (2) | CWE-255 | Credentials Management |
Open Source Vulnerability Database (OSVDB)
| id | Description |
|---|---|
| 74880 | Red Hat Fedora ecryptfs-utils /tmp Recovery Mount Local Information Disclosure |
| 74878 | Red Hat ecryptfs-utils mount.ecryptfs_private Race Condition Arbitrary File O... |
| 74877 | Red Hat ecryptfs-utils ecryptfs-setup-private Temporary File Key Injection Su... |
| 74876 | Red Hat ecryptfs-utils mount.ecryptfs_private mtab Corruption Arbitrary Direc... |
| 74875 | Red Hat ecryptfs-utils umount.ecryptfs_private Race Condition Arbitrary Direc... |
| 74874 | Red Hat ecryptfs-utils mount.ecryptfs_private Arbitrary Directory Mounting Lo... |
| 50355 | eCryptfs ecryptfs-utils ecryptfs-setup-pam-wrapped.sh Command Line Process Li... |
| 50354 | eCryptfs ecryptfs-utils ecryptfs-setup-confidential Command Line Process List... |
| 50353 | eCryptfs ecryptfs-utils ecryptfs-setup-private Command Line Process Listing C... |
OpenVAS Exploits
| id | Description |
|---|---|
| 2012-07-30 | Name : CentOS Update for ecryptfs-utils-75-5.el5_ CESA-2011:1241 centos5 x86_64 File : nvt/gb_CESA-2011_1241_ecryptfs-utils-75-5.el5__centos5_x86_64.nasl |
| 2012-03-19 | Name : Fedora Update for ecryptfs-utils FEDORA-2011-10671 File : nvt/gb_fedora_2011_10671_ecryptfs-utils_fc16.nasl |
| 2012-02-11 | Name : Debian Security Advisory DSA 2382-1 (ecryptfs-utils) File : nvt/deb_2382_1.nasl |
| 2011-09-23 | Name : CentOS Update for ecryptfs-utils-75-5.el5_ CESA-2011:1241 centos5 i386 File : nvt/gb_CESA-2011_1241_ecryptfs-utils-75-5.el5__centos5_i386.nasl |
| 2011-09-16 | Name : Fedora Update for ecryptfs-utils FEDORA-2011-11936 File : nvt/gb_fedora_2011_11936_ecryptfs-utils_fc15.nasl |
| 2011-09-16 | Name : Fedora Update for ecryptfs-utils FEDORA-2011-11979 File : nvt/gb_fedora_2011_11979_ecryptfs-utils_fc14.nasl |
| 2011-09-07 | Name : RedHat Update for ecryptfs-utils RHSA-2011:1241-01 File : nvt/gb_RHSA-2011_1241-01_ecryptfs-utils.nasl |
| 2011-09-07 | Name : Fedora Update for ecryptfs-utils FEDORA-2011-10718 File : nvt/gb_fedora_2011_10718_ecryptfs-utils_fc14.nasl |
| 2011-09-07 | Name : Fedora Update for ecryptfs-utils FEDORA-2011-10733 File : nvt/gb_fedora_2011_10733_ecryptfs-utils_fc15.nasl |
| 2011-08-12 | Name : Ubuntu Update for ecryptfs-utils USN-1188-1 File : nvt/gb_ubuntu_USN_1188_1.nasl |
| 2011-08-09 | Name : CentOS Update for ecryptfs-utils CESA-2009:1307 centos5 i386 File : nvt/gb_CESA-2009_1307_ecryptfs-utils_centos5_i386.nasl |
| 2009-09-21 | Name : CentOS Security Advisory CESA-2009:1307 (ecryptfs-utils) File : nvt/ovcesa2009_1307.nasl |
| 2009-09-09 | Name : RedHat Security Advisory RHSA-2009:1307 File : nvt/RHSA_2009_1307.nasl |
Nessus® Vulnerability Scanner
| id | Description |
|---|---|
| 2014-06-13 | Name: The remote openSUSE host is missing a security update. File: suse_11_3_ecryptfs-utils-110811.nasl - Type: ACT_GATHER_INFO |
| 2014-06-13 | Name: The remote openSUSE host is missing a security update. File: suse_11_4_ecryptfs-utils-110811.nasl - Type: ACT_GATHER_INFO |
| 2013-07-12 | Name: The remote Oracle Linux host is missing one or more security updates. File: oraclelinux_ELSA-2011-1241.nasl - Type: ACT_GATHER_INFO |
| 2013-01-24 | Name: The remote Red Hat host is missing one or more security updates. File: redhat-RHSA-2009-1307.nasl - Type: ACT_GATHER_INFO |
| 2012-08-01 | Name: The remote Scientific Linux host is missing one or more security updates. File: sl_20090902_ecryptfs_utils_on_SL5_x.nasl - Type: ACT_GATHER_INFO |
| 2012-08-01 | Name: The remote Scientific Linux host is missing one or more security updates. File: sl_20110831_ecryptfs_utils_on_SL5_x.nasl - Type: ACT_GATHER_INFO |
| 2012-01-12 | Name: The remote Debian host is missing a security-related update. File: debian_DSA-2382.nasl - Type: ACT_GATHER_INFO |
| 2011-09-23 | Name: The remote CentOS host is missing one or more security updates. File: centos_RHSA-2011-1241.nasl - Type: ACT_GATHER_INFO |
| 2011-09-07 | Name: The remote Fedora host is missing a security update. File: fedora_2011-10671.nasl - Type: ACT_GATHER_INFO |
| 2011-09-06 | Name: The remote Fedora host is missing a security update. File: fedora_2011-10718.nasl - Type: ACT_GATHER_INFO |
| 2011-09-06 | Name: The remote Fedora host is missing a security update. File: fedora_2011-10733.nasl - Type: ACT_GATHER_INFO |
| 2011-09-01 | Name: The remote Red Hat host is missing one or more security updates. File: redhat-RHSA-2011-1241.nasl - Type: ACT_GATHER_INFO |
| 2011-08-12 | Name: The remote SuSE 11 host is missing one or more security updates. File: suse_11_ecryptfs-utils-110804.nasl - Type: ACT_GATHER_INFO |
| 2011-08-10 | Name: The remote Ubuntu host is missing a security-related patch. File: ubuntu_USN-1188-1.nasl - Type: ACT_GATHER_INFO |
| 2010-01-06 | Name: The remote CentOS host is missing one or more security updates. File: centos_RHSA-2009-1307.nasl - Type: ACT_GATHER_INFO |
