This CPE summary could be partial or incomplete. Please contact us for a detailed listing.

Summary

Detail
Vendor Ecryptfs First view 2008-11-20
Product Ecryptfs Utils Last view 2014-02-15
Version 59 Type Application
Update *  
Edition *  
Language *  
Sofware Edition *  
Target Software *  
Target Hardware *  
Other *  
 
CPE Product cpe:2.3:a:ecryptfs:ecryptfs_utils

Activity : Overall

Related : CVE

  Date Alert Description
3.6 2014-02-15 CVE-2011-1837

The lock-counter implementation in utils/mount.ecryptfs_private.c in ecryptfs-utils before 90 allows local users to overwrite arbitrary files via unspecified vectors.

4.6 2014-02-15 CVE-2011-1836

utils/ecryptfs-recover-private in ecryptfs-utils before 90 does not establish a subdirectory with safe permissions, which might allow local users to bypass intended access restrictions via standard filesystem operations during the recovery process.

4.4 2014-02-15 CVE-2011-1835

The encrypted private-directory setup process in utils/ecryptfs-setup-private in ecryptfs-utils before 90 does not properly ensure that the passphrase file is created, which might allow local users to bypass intended access restrictions at a certain time in the new-user creation steps.

2.1 2014-02-15 CVE-2011-1834

utils/mount.ecryptfs_private.c in ecryptfs-utils before 90 does not properly maintain the mtab file during error conditions, which allows local users to cause a denial of service (table corruption) or bypass intended unmounting restrictions via a umount system call.

2.1 2014-02-15 CVE-2011-1832

utils/mount.ecryptfs_private.c in ecryptfs-utils before 90 does not properly check mountpoint permissions, which allows local users to remove directories via a umount system call.

4.6 2014-02-15 CVE-2011-1831

utils/mount.ecryptfs_private.c in ecryptfs-utils before 90 does not properly check mountpoint permissions, which allows local users to effectively replace any directory with a new filesystem, and consequently gain privileges, via a mount system call.

7.2 2008-11-20 CVE-2008-5188

The (1) ecryptfs-setup-private, (2) ecryptfs-setup-confidential, and (3) ecryptfs-setup-pam-wrapped.sh scripts in ecryptfs-utils 45 through 61 in eCryptfs place cleartext passwords on command lines, which allows local users to obtain sensitive information by listing the process.

CWE : Common Weakness Enumeration

%idName
71% (5) CWE-264 Permissions, Privileges, and Access Controls
28% (2) CWE-255 Credentials Management

Open Source Vulnerability Database (OSVDB)

id Description
74880 Red Hat Fedora ecryptfs-utils /tmp Recovery Mount Local Information Disclosure
74878 Red Hat ecryptfs-utils mount.ecryptfs_private Race Condition Arbitrary File O...
74877 Red Hat ecryptfs-utils ecryptfs-setup-private Temporary File Key Injection Su...
74876 Red Hat ecryptfs-utils mount.ecryptfs_private mtab Corruption Arbitrary Direc...
74875 Red Hat ecryptfs-utils umount.ecryptfs_private Race Condition Arbitrary Direc...
74874 Red Hat ecryptfs-utils mount.ecryptfs_private Arbitrary Directory Mounting Lo...
50355 eCryptfs ecryptfs-utils ecryptfs-setup-pam-wrapped.sh Command Line Process Li...
50354 eCryptfs ecryptfs-utils ecryptfs-setup-confidential Command Line Process List...
50353 eCryptfs ecryptfs-utils ecryptfs-setup-private Command Line Process Listing C...

OpenVAS Exploits

id Description
2012-07-30 Name : CentOS Update for ecryptfs-utils-75-5.el5_ CESA-2011:1241 centos5 x86_64
File : nvt/gb_CESA-2011_1241_ecryptfs-utils-75-5.el5__centos5_x86_64.nasl
2012-03-19 Name : Fedora Update for ecryptfs-utils FEDORA-2011-10671
File : nvt/gb_fedora_2011_10671_ecryptfs-utils_fc16.nasl
2012-02-11 Name : Debian Security Advisory DSA 2382-1 (ecryptfs-utils)
File : nvt/deb_2382_1.nasl
2011-09-23 Name : CentOS Update for ecryptfs-utils-75-5.el5_ CESA-2011:1241 centos5 i386
File : nvt/gb_CESA-2011_1241_ecryptfs-utils-75-5.el5__centos5_i386.nasl
2011-09-16 Name : Fedora Update for ecryptfs-utils FEDORA-2011-11936
File : nvt/gb_fedora_2011_11936_ecryptfs-utils_fc15.nasl
2011-09-16 Name : Fedora Update for ecryptfs-utils FEDORA-2011-11979
File : nvt/gb_fedora_2011_11979_ecryptfs-utils_fc14.nasl
2011-09-07 Name : RedHat Update for ecryptfs-utils RHSA-2011:1241-01
File : nvt/gb_RHSA-2011_1241-01_ecryptfs-utils.nasl
2011-09-07 Name : Fedora Update for ecryptfs-utils FEDORA-2011-10718
File : nvt/gb_fedora_2011_10718_ecryptfs-utils_fc14.nasl
2011-09-07 Name : Fedora Update for ecryptfs-utils FEDORA-2011-10733
File : nvt/gb_fedora_2011_10733_ecryptfs-utils_fc15.nasl
2011-08-12 Name : Ubuntu Update for ecryptfs-utils USN-1188-1
File : nvt/gb_ubuntu_USN_1188_1.nasl
2011-08-09 Name : CentOS Update for ecryptfs-utils CESA-2009:1307 centos5 i386
File : nvt/gb_CESA-2009_1307_ecryptfs-utils_centos5_i386.nasl
2009-09-21 Name : CentOS Security Advisory CESA-2009:1307 (ecryptfs-utils)
File : nvt/ovcesa2009_1307.nasl
2009-09-09 Name : RedHat Security Advisory RHSA-2009:1307
File : nvt/RHSA_2009_1307.nasl

Nessus® Vulnerability Scanner

id Description
2014-06-13 Name: The remote openSUSE host is missing a security update.
File: suse_11_3_ecryptfs-utils-110811.nasl - Type: ACT_GATHER_INFO
2014-06-13 Name: The remote openSUSE host is missing a security update.
File: suse_11_4_ecryptfs-utils-110811.nasl - Type: ACT_GATHER_INFO
2013-07-12 Name: The remote Oracle Linux host is missing one or more security updates.
File: oraclelinux_ELSA-2011-1241.nasl - Type: ACT_GATHER_INFO
2013-01-24 Name: The remote Red Hat host is missing one or more security updates.
File: redhat-RHSA-2009-1307.nasl - Type: ACT_GATHER_INFO
2012-08-01 Name: The remote Scientific Linux host is missing one or more security updates.
File: sl_20090902_ecryptfs_utils_on_SL5_x.nasl - Type: ACT_GATHER_INFO
2012-08-01 Name: The remote Scientific Linux host is missing one or more security updates.
File: sl_20110831_ecryptfs_utils_on_SL5_x.nasl - Type: ACT_GATHER_INFO
2012-01-12 Name: The remote Debian host is missing a security-related update.
File: debian_DSA-2382.nasl - Type: ACT_GATHER_INFO
2011-09-23 Name: The remote CentOS host is missing one or more security updates.
File: centos_RHSA-2011-1241.nasl - Type: ACT_GATHER_INFO
2011-09-07 Name: The remote Fedora host is missing a security update.
File: fedora_2011-10671.nasl - Type: ACT_GATHER_INFO
2011-09-06 Name: The remote Fedora host is missing a security update.
File: fedora_2011-10718.nasl - Type: ACT_GATHER_INFO
2011-09-06 Name: The remote Fedora host is missing a security update.
File: fedora_2011-10733.nasl - Type: ACT_GATHER_INFO
2011-09-01 Name: The remote Red Hat host is missing one or more security updates.
File: redhat-RHSA-2011-1241.nasl - Type: ACT_GATHER_INFO
2011-08-12 Name: The remote SuSE 11 host is missing one or more security updates.
File: suse_11_ecryptfs-utils-110804.nasl - Type: ACT_GATHER_INFO
2011-08-10 Name: The remote Ubuntu host is missing a security-related patch.
File: ubuntu_USN-1188-1.nasl - Type: ACT_GATHER_INFO
2010-01-06 Name: The remote CentOS host is missing one or more security updates.
File: centos_RHSA-2009-1307.nasl - Type: ACT_GATHER_INFO