- Committer: Dustin Kirkland
- Date: 2011-08-10 13:35:49 UTC
- Revision ID: kirkland@ubuntu.com-20110810133549-40gwgo9ir01uxw9c
* SECURITY UPDATE: privilege escalation via mountpoint race conditions
(LP: #732628)
- debian/patches/CVE-2011-1831,1832,1834.patch: chdir into mountpoint
before checking permissions in src/utils/mount.ecryptfs_private.c.
- CVE-2011-1831
- CVE-2011-1832
* SECURITY UPDATE: race condition when checking source during mount
(LP: #732628)
- debian/patches/CVE-2011-1833.patch: use new ecryptfs_check_dev_ruid
kernel option when mounting directory in
src/utils/mount.ecryptfs_private.c.
- CVE-2011-1833
* SECURITY UPDATE: mtab corruption via improper handling (LP: #732628)
- debian/patches/CVE-2011-1831,1832,1834.patch: modify mtab via a temp
file first and make sure it succeeds before replacing the real mtab
in src/utils/mount.ecryptfs_private.c.
- CVE-2011-1834
* SECURITY UPDATE: key poisoning via insecure temp directory handling
(LP: #732628)
- debian/patches/CVE-2011-1835.patch: make sure we don't copy into a
user controlled directory in src/utils/ecryptfs-setup-private.
- CVE-2011-1835
* SECURITY UPDATE: information disclosure via recovery mount in /tmp
(LP: #732628)
- debian/patches/CVE-2011-1836.patch: mount inside protected
subdirectory in src/utils/ecryptfs-recover-private.
- CVE-2011-1836
* SECURITY UPDATE: arbitrary file overwrite via lock counter race
condition (LP: #732628)
- debian/patches/CVE-2011-1837.patch: verify permissions with a file
descriptor, and don't follow symlinks in
src/utils/mount.ecryptfs_private.c.
- CVE-2011-1837
(LP: #732628)
- debian/patches/CVE-2011-1831,1832,1834.patch: chdir into mountpoint
before checking permissions in src/utils/mount.ecryptfs_private.c.
- CVE-2011-1831
- CVE-2011-1832
* SECURITY UPDATE: race condition when checking source during mount
(LP: #732628)
- debian/patches/CVE-2011-1833.patch: use new ecryptfs_check_dev_ruid
kernel option when mounting directory in
src/utils/mount.ecryptfs_private.c.
- CVE-2011-1833
* SECURITY UPDATE: mtab corruption via improper handling (LP: #732628)
- debian/patches/CVE-2011-1831,1832,1834.patch: modify mtab via a temp
file first and make sure it succeeds before replacing the real mtab
in src/utils/mount.ecryptfs_private.c.
- CVE-2011-1834
* SECURITY UPDATE: key poisoning via insecure temp directory handling
(LP: #732628)
- debian/patches/CVE-2011-1835.patch: make sure we don't copy into a
user controlled directory in src/utils/ecryptfs-setup-private.
- CVE-2011-1835
* SECURITY UPDATE: information disclosure via recovery mount in /tmp
(LP: #732628)
- debian/patches/CVE-2011-1836.patch: mount inside protected
subdirectory in src/utils/ecryptfs-recover-private.
- CVE-2011-1836
* SECURITY UPDATE: arbitrary file overwrite via lock counter race
condition (LP: #732628)
- debian/patches/CVE-2011-1837.patch: verify permissions with a file
descriptor, and don't follow symlinks in
src/utils/mount.ecryptfs_private.c.
- CVE-2011-1837
| Filename | Latest Rev | Last Changed | Committer | Comment | Size | ||
|---|---|---|---|---|---|---|---|
 .. |
|||||||
debian
|
309 | 16 years ago | Dustin Kirkland | debian/ubuntu packaging Initial checkin of the De |
|
||
|
doc
|
303 | 16 years ago | Dustin Kirkland | move the modprobe to a better place Move the modp |
|
||
|
lintian
|
448 | 15 years ago | Dustin Kirkland | * debian/lintian/ecryptfs-utils: added a lintian |
|
||
|
m4
|
303 | 16 years ago | Dustin Kirkland | move the modprobe to a better place Move the modp |
|
||
|
po
|
497 | 15 years ago | Dustin Kirkland | * Makefile.am, configure.ac, debian/control, debia |
|
||
|
rpm
|
303 | 16 years ago | Dustin Kirkland | move the modprobe to a better place Move the modp |
|
||
|
scripts
|
303 | 16 years ago | Dustin Kirkland | move the modprobe to a better place Move the modp |
|
||
|
src
|
303 | 16 years ago | Dustin Kirkland | move the modprobe to a better place Move the modp |
|
||
AUTHORS |
303 | 16 years ago | Dustin Kirkland | move the modprobe to a better place Move the modp | 535 bytes |
|
|
|
ChangeLog |
378 | 16 years ago | Dustin Kirkland | Changelogs updated. Signed-off-by: Dustin Kirklan | 4 KB |
|
|
|
configure.ac |
552 | 13 years ago | Dustin Kirkland | opening 90 | 10.3 KB |
|
|
|
COPYING |
303 | 16 years ago | Dustin Kirkland | move the modprobe to a better place Move the modp | 17.5 KB |
|
|
|
INSTALL |
303 | 16 years ago | Dustin Kirkland | move the modprobe to a better place Move the modp | 7.8 KB |
|
|
|
Makefile.am |
497 | 15 years ago | Dustin Kirkland | * Makefile.am, configure.ac, debian/control, debia | 1 KB |
|
|
|
NEWS |
303 | 16 years ago | Dustin Kirkland | move the modprobe to a better place Move the modp | 1.1 KB |
|
|
|
README |
406 | 15 years ago | Dustin Kirkland | * README, configure.ac, debian/control, debian/r | 12.2 KB |
|
|
|
THANKS |
303 | 16 years ago | Dustin Kirkland | move the modprobe to a better place Move the modp | 601 bytes |
|
|