- Committer: Bazaar Package Importer
- Date: 2011-08-04 10:37:40 UTC
- Revision ID: james.westby@ubuntu.com-20110804103740-k4bobcj7qpe94xuv
* SECURITY UPDATE: privilege escalation via mountpoint race conditions
(LP: #732628)
- debian/patches/CVE-2011-1831,1832,1834.patch: chdir into mountpoint
before checking permissions in src/utils/mount.ecryptfs_private.c.
- CVE-2011-1831
- CVE-2011-1832
* SECURITY UPDATE: race condition when checking source during mount
(LP: #732628)
- debian/patches/CVE-2011-1833.patch: use new ecryptfs_check_dev_ruid
kernel option when mounting directory in
src/utils/mount.ecryptfs_private.c.
- CVE-2011-1833
* SECURITY UPDATE: mtab corruption via improper handling (LP: #732628)
- debian/patches/CVE-2011-1831,1832,1834.patch: modify mtab via a temp
file first and make sure it succeeds before replacing the real mtab
in src/utils/mount.ecryptfs_private.c.
- CVE-2011-1834
* SECURITY UPDATE: key poisoning via insecure temp directory handling
(LP: #732628)
- debian/patches/CVE-2011-1835.patch: make sure we don't copy into a
user controlled directory in src/utils/ecryptfs-setup-private.
- CVE-2011-1835
* SECURITY UPDATE: information disclosure via recovery mount in /tmp
(LP: #732628)
- debian/patches/CVE-2011-1836.patch: mount inside protected
subdirectory in src/utils/ecryptfs-recover-private.
- CVE-2011-1836
* SECURITY UPDATE: arbitrary file overwrite via lock counter race
condition (LP: #732628)
- debian/patches/CVE-2011-1837.patch: verify permissions with a file
descriptor, and don't follow symlinks in
src/utils/mount.ecryptfs_private.c.
- CVE-2011-1837
(LP: #732628)
- debian/patches/CVE-2011-1831,1832,1834.patch: chdir into mountpoint
before checking permissions in src/utils/mount.ecryptfs_private.c.
- CVE-2011-1831
- CVE-2011-1832
* SECURITY UPDATE: race condition when checking source during mount
(LP: #732628)
- debian/patches/CVE-2011-1833.patch: use new ecryptfs_check_dev_ruid
kernel option when mounting directory in
src/utils/mount.ecryptfs_private.c.
- CVE-2011-1833
* SECURITY UPDATE: mtab corruption via improper handling (LP: #732628)
- debian/patches/CVE-2011-1831,1832,1834.patch: modify mtab via a temp
file first and make sure it succeeds before replacing the real mtab
in src/utils/mount.ecryptfs_private.c.
- CVE-2011-1834
* SECURITY UPDATE: key poisoning via insecure temp directory handling
(LP: #732628)
- debian/patches/CVE-2011-1835.patch: make sure we don't copy into a
user controlled directory in src/utils/ecryptfs-setup-private.
- CVE-2011-1835
* SECURITY UPDATE: information disclosure via recovery mount in /tmp
(LP: #732628)
- debian/patches/CVE-2011-1836.patch: mount inside protected
subdirectory in src/utils/ecryptfs-recover-private.
- CVE-2011-1836
* SECURITY UPDATE: arbitrary file overwrite via lock counter race
condition (LP: #732628)
- debian/patches/CVE-2011-1837.patch: verify permissions with a file
descriptor, and don't follow symlinks in
src/utils/mount.ecryptfs_private.c.
- CVE-2011-1837
| Filename | Latest Rev | Last Changed | Committer | Comment | Size | ||
|---|---|---|---|---|---|---|---|
 .. |
|||||||
.pc
|
72 | 12 years ago | Bazaar Package Importer | * SECURITY UPDATE: privilege escalation via mountp |
|
||
|
debian
|
2 | 17 years ago | Bazaar Package Importer | * Initial release. * Repackaged upstream tarball w |
|
||
|
doc
|
1 | 17 years ago | Bazaar Package Importer | Import upstream version 15 |
|
||
|
m4
|
1.1.9 | 15 years ago | Bazaar Package Importer | Import upstream version 48 |
|
||
|
po
|
1.1.28 | 14 years ago | Bazaar Package Importer | Import upstream version 83 |
|
||
|
src
|
1 | 17 years ago | Bazaar Package Importer | Import upstream version 15 |
|
||
aclocal.m4 |
70 | 13 years ago | Bazaar Package Importer | * src/utils/mount.ecryptfs_private.c: - reduce t | 63.9 KB |
|
|
|
AUTHORS |
34 | 15 years ago | Bazaar Package Importer | * Merge from debian unstable, remaining changes (D | 535 bytes |
|
|
|
ChangeLog |
1.1.20 | 15 years ago | Bazaar Package Importer | Import upstream version 75 | 4 KB |
|
|
compile |
1.1.28 | 14 years ago | Bazaar Package Importer | Import upstream version 83 | 3.6 KB |
|
|
|
config.guess |
66 | 13 years ago | Bazaar Package Importer | * src/desktop/ecryptfs-record-passphrase: fix typo | 43.9 KB |
|
|
|
config.h.in |
63 | 14 years ago | Bazaar Package Importer | [ David Planella ] * Makefile.am, configure.ac, de | 3.1 KB |
|
|
|
config.sub |
66 | 13 years ago | Bazaar Package Importer | * src/desktop/ecryptfs-record-passphrase: fix typo | 33.7 KB |
|
|
|
configure |
71 | 12 years ago | Bazaar Package Importer | [ Dustin Kirkland ] * debian/control: - add miss | 511 KB |
|
|
|
configure.ac |
71 | 12 years ago | Bazaar Package Importer | [ Dustin Kirkland ] * debian/control: - add miss | 10.3 KB |
|
|
|
COPYING |
1 | 17 years ago | Bazaar Package Importer | Import upstream version 15 | 17.5 KB |
|
|
|
depcomp |
56 | 14 years ago | Bazaar Package Importer | Merged upstream release | 18.1 KB |
|
|
|
INSTALL |
1 | 17 years ago | Bazaar Package Importer | Import upstream version 15 | 7.8 KB |
|
|
|
install-sh |
56 | 14 years ago | Bazaar Package Importer | Merged upstream release | 13.3 KB |
|
|
|
ltmain.sh |
69 | 13 years ago | Bazaar Package Importer | [ Paolo Bonzini <pbonzini@redhat.com> ] * src/util | 237 KB |
|
|
|
Makefile.am |
1.1.28 | 14 years ago | Bazaar Package Importer | Import upstream version 83 | 1 KB |
|
|
|
Makefile.in |
70 | 13 years ago | Bazaar Package Importer | * src/utils/mount.ecryptfs_private.c: - reduce t | 27.5 KB |
|
|
|
missing |
1.1.24 | 14 years ago | Bazaar Package Importer | Import upstream version 79 | 11.1 KB |
|
|
|
NEWS |
34 | 15 years ago | Bazaar Package Importer | * Merge from debian unstable, remaining changes (D | 1.1 KB |
|
|
|
py-compile |
56 | 14 years ago | Bazaar Package Importer | Merged upstream release | 4 KB |
|
|
|
README |
51 | 14 years ago | Bazaar Package Importer | [ Dustin Kirkland ] * src/utils/ecryptfs-setup-swa | 12.2 KB |
|
|
|
THANKS |
1 | 17 years ago | Bazaar Package Importer | Import upstream version 15 | 601 bytes |
|
|