Описание
The encrypted private-directory setup process in utils/ecryptfs-setup-private in ecryptfs-utils before 90 does not properly ensure that the passphrase file is created, which might allow local users to bypass intended access restrictions at a certain time in the new-user creation steps.
| Релиз | Статус | Примечание |
|---|---|---|
| devel | released | 89-0ubuntu2 |
| hardy | not-affected | code not present |
| lucid | released | 83-0ubuntu3.2.10.04.1 |
| maverick | released | 83-0ubuntu3.2.10.10.1 |
| natty | released | 87-0ubuntu1.1 |
| upstream | needs-triage |
Показывать по
4.4 Medium
CVSS2
Связанные уязвимости
The encrypted private-directory setup process in utils/ecryptfs-setup-private in ecryptfs-utils before 90 does not properly ensure that the passphrase file is created, which might allow local users to bypass intended access restrictions at a certain time in the new-user creation steps.
The encrypted private-directory setup process in utils/ecryptfs-setup-private in ecryptfs-utils before 90 does not properly ensure that the passphrase file is created, which might allow local users to bypass intended access restrictions at a certain time in the new-user creation steps.
The encrypted private-directory setup process in utils/ecryptfs-setup- ...
The encrypted private-directory setup process in utils/ecryptfs-setup-private in ecryptfs-utils before 90 does not properly ensure that the passphrase file is created, which might allow local users to bypass intended access restrictions at a certain time in the new-user creation steps.
ELSA-2011-1241: ecryptfs-utils security update (MODERATE)
4.4 Medium
CVSS2