-
Committer:
Bazaar Package Importer
-
Author(s):
Marc Deslauriers
-
Date:
2011-08-04 10:37:00 UTC
-
mfrom:
(65.1.1 lucid-proposed)
-
Revision ID:
james.westby@ubuntu.com-20110804103700-sdyea6t8i9ja95ip
Tags: 83-0ubuntu3.2.10.04.1
* SECURITY UPDATE: privilege escalation via mountpoint race conditions
(LP: #732628)
- src/utils/mount.ecryptfs_private.c: chdir into mountpoint before
checking permissions. Patch thanks to Dan Rosenberg.
- CVE-2011-1831
- CVE-2011-1832
* SECURITY UPDATE: race condition when checking source during mount
(LP: #732628)
- src/utils/mount.ecryptfs_private.c: use new ecryptfs_check_dev_ruid
kernel option when mounting directory.
- CVE-2011-1833
* SECURITY UPDATE: mtab corruption via improper handling (LP: #732628)
- src/utils/mount.ecryptfs_private.c: modify mtab via a temp file first
and make sure it succeeds before replacing the real mtab. Patch
thanks to Dan Rosenberg.
- CVE-2011-1834
* SECURITY UPDATE: key poisoning via insecure temp directory handling
(LP: #732628)
- src/utils/ecryptfs-setup-private: make sure we don't copy into a
user controlled directory.
- CVE-2011-1835
* SECURITY UPDATE: arbitrary file overwrite via lock counter race
condition (LP: #732628)
- src/utils/mount.ecryptfs_private.c: verify permissions with a file
descriptor, and don't follow symlinks.
- CVE-2011-1837