-
Committer:
Package Import Robot
-
Author(s):
Tyler Hicks
-
Date:
2015-03-04 16:26:45 UTC
-
mfrom:
(65.1.2 lucid-proposed)
-
Revision ID:
package-import@ubuntu.com-20150304162645-17m4arphovuyz8fm
Tags: 83-0ubuntu3.2.10.04.6
* SECURITY UPDATE: Mount passphrase wrapped with a default salt value
- src/libecryptfs/key_management.c, src/include/ecryptfs.h: Generate a
random salt when wrapping the mount passphrase.
- src/pam_ecryptfs/pam_ecryptfs.c: If a user has a mount passphrase that was
wrapped using the default salt, their mount passphrase will be rewrapped
using a random salt when they log in with their password.
- src/libecryptfs/key_management.c: Create a temporary file when creating
a new wrapped-passphrase file and copy it to its final destination after
the file has been fully synced to disk (LP: #1020902)
- CVE-2014-9687