Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
securityvulnsSecurityvulnsSECURITYVULNS:DOC:26817
HistoryAug 11, 2011 - 12:00 a.m.

[USN-1188-1] eCryptfs vulnerabilities

2011-08-1100:00:00
vulners.com
27
JSON

==========================================================================
Ubuntu Security Notice USN-1188-1
August 09, 2011

ecryptfs-utils vulnerabilities

A security issue affects these releases of Ubuntu and its derivatives:

  • Ubuntu 11.04
  • Ubuntu 10.10
  • Ubuntu 10.04 LTS

Summary:

eCryptfs could be tricked into mounting and unmounting arbitrary locations,
and possibly disclose confidential information.

Software Description:

  • ecryptfs-utils: ecryptfs cryptographic filesystem (utilities)

Details:

Vasiliy Kulikov and Dan Rosenberg discovered that eCryptfs incorrectly
validated permissions on the requested mountpoint. A local attacker could
use this flaw to mount to arbitrary locations, leading to privilege
escalation. (CVE-2011-1831)

Vasiliy Kulikov and Dan Rosenberg discovered that eCryptfs incorrectly
validated permissions on the requested mountpoint. A local attacker could
use this flaw to unmount to arbitrary locations, leading to a denial of
service. (CVE-2011-1832)

Vasiliy Kulikov and Dan Rosenberg discovered that eCryptfs incorrectly
validated permissions on the requested source directory. A local attacker
could use this flaw to mount an arbitrary directory, possibly leading to
information disclosure. A pending kernel update will provide the other
half of the fix for this issue. (CVE-2011-1833)

Dan Rosenberg and Marc Deslauriers discovered that eCryptfs incorrectly
handled modifications to the mtab file when an error occurs. A local
attacker could use this flaw to corrupt the mtab file, and possibly unmount
arbitrary locations, leading to a denial of service. (CVE-2011-1834)

Marc Deslauriers discovered that eCryptfs incorrectly handled keys when
setting up an encrypted private directory. A local attacker could use this
flaw to manipulate keys during creation of a new user. (CVE-2011-1835)

Marc Deslauriers discovered that eCryptfs incorrectly handled permissions
during recovery. A local attacker could use this flaw to possibly access
another user's data during the recovery process. This issue only applied to
Ubuntu 11.04. (CVE-2011-1836)

Vasiliy Kulikov discovered that eCryptfs incorrectly handled lock counters.
A local attacker could use this flaw to possibly overwrite arbitrary files.
The default symlink restrictions in Ubuntu 10.10 and 11.04 should protect
against this issue. (CVE-2011-1837)

Update instructions:

The problem can be corrected by updating your system to the following
package versions:

Ubuntu 11.04:
ecryptfs-utils 87-0ubuntu1.1

Ubuntu 10.10:
ecryptfs-utils 83-0ubuntu3.2.10.10.1

Ubuntu 10.04 LTS:
ecryptfs-utils 83-0ubuntu3.2.10.04.1

In general, a standard system update will make all the necessary changes.

References:
http://www.ubuntu.com/usn/usn-1188-1
CVE-2011-1831, CVE-2011-1832, CVE-2011-1833, CVE-2011-1834,
CVE-2011-1835, CVE-2011-1836, CVE-2011-1837

Package Information:
https://launchpad.net/ubuntu/+source/ecryptfs-utils/87-0ubuntu1.1
https://launchpad.net/ubuntu/+source/ecryptfs-utils/83-0ubuntu3.2.10.10.1
https://launchpad.net/ubuntu/+source/ecryptfs-utils/83-0ubuntu3.2.10.04.1

Related

openvas 67
nessus 41
fedora 9
suse 6
ubuntu 12
securityvulns 5
oraclelinux 6
redhat 4
centos 2
osv 2
debian 2
debiancve 7
ubuntucve 7
prion 7
veracode 6
cve 7
amazon 1
vmware 2
packetstorm 1
openvas
openvas
Ubuntu Update for ecryptfs-utils USN-1188-1
2011-08-12 00:00:00
Fedora Update for ecryptfs-utils FEDORA-2011-10733
2011-09-07 00:00:00
Fedora Update for ecryptfs-utils FEDORA-2011-10671
2012-03-19 00:00:00
nessus
nessus
Fedora 16 : ecryptfs-utils-90-1.fc16 (2011-10671)
2011-09-07 00:00:00
Ubuntu 10.04 LTS / 10.10 / 11.04 : ecryptfs-utils vulnerabilities (USN-1188-1)
2011-08-10 00:00:00
Fedora 15 : ecryptfs-utils-90-1.fc15 (2011-10733)
2011-09-06 00:00:00
fedora
fedora
[SECURITY] Fedora 15 Update: ecryptfs-utils-90-1.fc15
2011-09-02 05:25:53
[SECURITY] Fedora 14 Update: ecryptfs-utils-90-1.fc14
2011-09-02 05:31:16
[SECURITY] Fedora 16 Update: ecryptfs-utils-90-1.fc16
2011-09-07 03:42:14
suse
suse
Security update for ecryptfs-utils (important)
2011-08-12 06:08:16
ecryptfs-utils: Update to fix various symlink race attacks (important)
2011-08-12 21:08:14
remote denial of service in kernel
2011-12-13 17:34:50
ubuntu
ubuntu
eCryptfs vulnerabilities
2011-08-09 00:00:00
Linux kernel vulnerabilities
2011-09-21 00:00:00
Linux kernel (Maverick backport) vulnerabilities
2011-09-29 00:00:00
securityvulns
securityvulns
eCryptfs multiple security vulnerabilities
2011-08-24 00:00:00
[SECURITY] [DSA 2443-1] linux-2.6 security update
2012-04-02 00:00:00
[USN-1211-1] Linux kernel vulnerabilities
2011-09-26 00:00:00
oraclelinux
oraclelinux
ecryptfs-utils security update
2011-08-31 00:00:00
Unbreakable Enterprise kernel security update
2011-10-07 00:00:00
kernel security, bug fix, and enhancement update
2011-10-05 00:00:00
redhat
redhat
(RHSA-2011:1241) Moderate: ecryptfs-utils security update
2011-08-31 00:00:00
(RHSA-2011:1350) Important: kernel security, bug fix, and enhancement update
2011-10-05 00:00:00
(RHSA-2011:1386) Important: kernel security, bug fix, and enhancement update
2011-10-20 00:00:00
centos
centos
ecryptfs security update
2011-09-01 16:11:04
kernel security update
2011-10-21 00:31:03
osv
osv
ecryptfs-utils - multiple
2012-01-07 00:00:00
linux-2.6 - several
2012-03-26 00:00:00
debian
debian
[SECURITY] [DSA 2382-1] ecryptfs-utils security update
2012-01-07 18:48:38
[SECURITY] [DSA 2443-1] linux-2.6 security update
2012-03-27 00:35:57
debiancve
debiancve
CVE-2011-1831
2014-02-15 14:57:00
CVE-2011-1832
2014-02-15 14:57:00
CVE-2011-1835
2014-02-15 14:57:00
ubuntucve
ubuntucve
CVE-2011-1831
2011-08-09 00:00:00
CVE-2011-1832
2011-08-09 00:00:00
CVE-2011-1835
2011-08-09 00:00:00
prion
prion
Design/Logic Flaw
2014-02-15 14:57:00
Information disclosure
2014-02-15 14:57:00
Code injection
2014-02-15 14:57:00
veracode
veracode
Privilege Escalation
2020-04-10 01:02:45
Arbitrary File Write
2020-04-10 01:02:46
Denial Of Service (DoS)
2020-04-10 01:02:45
cve
cve
CVE-2011-1831
2014-02-15 14:57:00
CVE-2011-1832
2014-02-15 14:57:00
CVE-2011-1834
2014-02-15 14:57:00
amazon
amazon
Medium: kernel
2011-10-31 18:26:00
vmware
vmware
VMware vSphere and vCOps updates to third party libraries
2012-08-30 00:00:00
VMware vSphere and vCOps updates to third party libraries
2012-08-30 00:00:00
packetstorm
packetstorm
Ubuntu Security Notice USN-1202-1
2011-09-14 00:00:00
JSON
Related for SECURITYVULNS:DOC:26817
openvas67nessus41fedora9suse6ubuntu12securityvulns5oraclelinux6redhat4centos2osv2debian2debiancve7ubuntucve7prion7veracode6cve7amazon1vmware2packetstorm1