- Committer: Package Import Robot
- Date: 2011-08-10 08:36:44 UTC
- mfrom: (1.1.35 upstream)
- Revision ID: package-import@ubuntu.com-20110810083644-04h6psjqifzbp8k4
[ Marc Deslauriers ]
* SECURITY UPDATE: privilege escalation via mountpoint race conditions
(LP: #732628)
- debian/patches/CVE-2011-1831,1832,1834.patch: chdir into mountpoint
before checking permissions in src/utils/mount.ecryptfs_private.c.
- CVE-2011-1831
- CVE-2011-1832
* SECURITY UPDATE: race condition when checking source during mount
(LP: #732628)
- debian/patches/CVE-2011-1833.patch: use new ecryptfs_check_dev_ruid
kernel option when mounting directory in
src/utils/mount.ecryptfs_private.c.
- CVE-2011-1833
* SECURITY UPDATE: mtab corruption via improper handling (LP: #732628)
- debian/patches/CVE-2011-1831,1832,1834.patch: modify mtab via a temp
file first and make sure it succeeds before replacing the real mtab
in src/utils/mount.ecryptfs_private.c.
- CVE-2011-1834
* SECURITY UPDATE: key poisoning via insecure temp directory handling
(LP: #732628)
- debian/patches/CVE-2011-1835.patch: make sure we don't copy into a
user controlled directory in src/utils/ecryptfs-setup-private.
- CVE-2011-1835
* SECURITY UPDATE: information disclosure via recovery mount in /tmp
(LP: #732628)
- debian/patches/CVE-2011-1836.patch: mount inside protected
subdirectory in src/utils/ecryptfs-recover-private.
- CVE-2011-1836
* SECURITY UPDATE: arbitrary file overwrite via lock counter race
condition (LP: #732628)
- debian/patches/CVE-2011-1837.patch: verify permissions with a file
descriptor, and don't follow symlinks in
src/utils/mount.ecryptfs_private.c.
- CVE-2011-1837
* SECURITY UPDATE: privilege escalation via mountpoint race conditions
(LP: #732628)
- debian/patches/CVE-2011-1831,1832,1834.patch: chdir into mountpoint
before checking permissions in src/utils/mount.ecryptfs_private.c.
- CVE-2011-1831
- CVE-2011-1832
* SECURITY UPDATE: race condition when checking source during mount
(LP: #732628)
- debian/patches/CVE-2011-1833.patch: use new ecryptfs_check_dev_ruid
kernel option when mounting directory in
src/utils/mount.ecryptfs_private.c.
- CVE-2011-1833
* SECURITY UPDATE: mtab corruption via improper handling (LP: #732628)
- debian/patches/CVE-2011-1831,1832,1834.patch: modify mtab via a temp
file first and make sure it succeeds before replacing the real mtab
in src/utils/mount.ecryptfs_private.c.
- CVE-2011-1834
* SECURITY UPDATE: key poisoning via insecure temp directory handling
(LP: #732628)
- debian/patches/CVE-2011-1835.patch: make sure we don't copy into a
user controlled directory in src/utils/ecryptfs-setup-private.
- CVE-2011-1835
* SECURITY UPDATE: information disclosure via recovery mount in /tmp
(LP: #732628)
- debian/patches/CVE-2011-1836.patch: mount inside protected
subdirectory in src/utils/ecryptfs-recover-private.
- CVE-2011-1836
* SECURITY UPDATE: arbitrary file overwrite via lock counter race
condition (LP: #732628)
- debian/patches/CVE-2011-1837.patch: verify permissions with a file
descriptor, and don't follow symlinks in
src/utils/mount.ecryptfs_private.c.
- CVE-2011-1837
| Filename | Latest Rev | Last Changed | Committer | Comment | Size | ||
|---|---|---|---|---|---|---|---|
 .. |
|||||||
debian
|
2 | 17 years ago | Bazaar Package Importer | * Initial release. * Repackaged upstream tarball w |
|
||
|
doc
|
1 | 17 years ago | Bazaar Package Importer | Import upstream version 15 |
|
||
|
m4
|
1.1.9 | 15 years ago | Bazaar Package Importer | Import upstream version 48 |
|
||
|
po
|
1.1.28 | 14 years ago | Bazaar Package Importer | Import upstream version 83 |
|
||
|
src
|
1 | 17 years ago | Bazaar Package Importer | Import upstream version 15 |
|
||
aclocal.m4 |
73 | 12 years ago | Package Import Robot | [ Marc Deslauriers ] * SECURITY UPDATE: privilege | 64.1 KB |
|
|
|
AUTHORS |
34 | 15 years ago | Bazaar Package Importer | * Merge from debian unstable, remaining changes (D | 535 bytes |
|
|
|
ChangeLog |
1.1.20 | 15 years ago | Bazaar Package Importer | Import upstream version 75 | 4 KB |
|
|
compile |
1.1.28 | 14 years ago | Bazaar Package Importer | Import upstream version 83 | 3.6 KB |
|
|
|
config.guess |
73 | 12 years ago | Package Import Robot | [ Marc Deslauriers ] * SECURITY UPDATE: privilege | 43.4 KB |
|
|
|
config.h.in |
63 | 14 years ago | Bazaar Package Importer | [ David Planella ] * Makefile.am, configure.ac, de | 3.1 KB |
|
|
|
config.sub |
73 | 12 years ago | Package Import Robot | [ Marc Deslauriers ] * SECURITY UPDATE: privilege | 34.3 KB |
|
|
|
configure |
73 | 12 years ago | Package Import Robot | [ Marc Deslauriers ] * SECURITY UPDATE: privilege | 536 KB |
|
|
|
configure.ac |
73 | 12 years ago | Package Import Robot | [ Marc Deslauriers ] * SECURITY UPDATE: privilege | 10.3 KB |
|
|
|
COPYING |
1 | 17 years ago | Bazaar Package Importer | Import upstream version 15 | 17.5 KB |
|
|
|
depcomp |
56 | 14 years ago | Bazaar Package Importer | Merged upstream release | 18.1 KB |
|
|
|
INSTALL |
1 | 17 years ago | Bazaar Package Importer | Import upstream version 15 | 7.8 KB |
|
|
|
install-sh |
56 | 14 years ago | Bazaar Package Importer | Merged upstream release | 13.3 KB |
|
|
|
ltmain.sh |
73 | 12 years ago | Package Import Robot | [ Marc Deslauriers ] * SECURITY UPDATE: privilege | 276 KB |
|
|
|
Makefile.am |
1.1.28 | 14 years ago | Bazaar Package Importer | Import upstream version 83 | 1 KB |
|
|
|
Makefile.in |
73 | 12 years ago | Package Import Robot | [ Marc Deslauriers ] * SECURITY UPDATE: privilege | 27.6 KB |
|
|
|
missing |
1.1.24 | 14 years ago | Bazaar Package Importer | Import upstream version 79 | 11.1 KB |
|
|
|
NEWS |
34 | 15 years ago | Bazaar Package Importer | * Merge from debian unstable, remaining changes (D | 1.1 KB |
|
|
|
py-compile |
56 | 14 years ago | Bazaar Package Importer | Merged upstream release | 4 KB |
|
|
|
README |
51 | 14 years ago | Bazaar Package Importer | [ Dustin Kirkland ] * src/utils/ecryptfs-setup-swa | 12.2 KB |
|
|
|
THANKS |
1 | 17 years ago | Bazaar Package Importer | Import upstream version 15 | 601 bytes |
|
|