Описание
It was found that a specially crafted LUKS header could trick cryptsetup into disabling encryption during the recovery of the device. An attacker with physical access to the medium, such as a flash disk, could use this flaw to force a user into permanently disabling the encryption layer of that medium.
| Релиз | Статус | Примечание |
|---|---|---|
| bionic | not-affected | code not present |
| devel | released | 2:2.4.3-1ubuntu1 |
| esm-infra-legacy/trusty | not-affected | code not present |
| esm-infra/bionic | not-affected | code not present |
| esm-infra/focal | not-affected | 2:2.2.2-3ubuntu2.4 |
| esm-infra/xenial | not-affected | code not present |
| focal | released | 2:2.2.2-3ubuntu2.4 |
| hirsute | ignored | end of life |
| impish | released | 2:2.3.7-0ubuntu0.21.10.1 |
| jammy | released | 2:2.4.3-1ubuntu1 |
Показывать по
EPSS
4.3 Medium
CVSS3
Связанные уязвимости
It was found that a specially crafted LUKS header could trick cryptsetup into disabling encryption during the recovery of the device. An attacker with physical access to the medium, such as a flash disk, could use this flaw to force a user into permanently disabling the encryption layer of that medium.
It was found that a specially crafted LUKS header could trick cryptsetup into disabling encryption during the recovery of the device. An attacker with physical access to the medium, such as a flash disk, could use this flaw to force a user into permanently disabling the encryption layer of that medium.
It was found that a specially crafted LUKS header could trick cryptset ...
EPSS
4.3 Medium
CVSS3