CVE-2011-1831
First published: Tue Aug 09 2011(Updated: )
A number of flaws were reported [1] in eCryptfs that could allow a user to mount or unmount arbitrary locations, and possibly disclose confidential information: Vasiliy Kulikov of Openwall and Dan Rosenberg discovered that eCryptfs incorrectly validated permissions on the requested mountpoint. A local attacker could use this flaw to mount to arbitrary locations, leading to privilege escalation. (<a href="https://access.redhat.com/security/cve/CVE-2011-1831">CVE-2011-1831</a>) Vasiliy Kulikov of Openwall and Dan Rosenberg discovered that eCryptfs incorrectly validated permissions on the requested mountpoint. A local attacker could use this flaw to unmount to arbitrary locations, leading to a denial of service. (<a href="https://access.redhat.com/security/cve/CVE-2011-1832">CVE-2011-1832</a>) Vasiliy Kulikov of Openwall and Dan Rosenberg discovered that eCryptfs incorrectly validated permissions on the requested source directory. A local attacker could use this flaw to mount an arbitrary directory, possibly leading to information disclosure. Note that this flaw also requires a fix in the kernel to be complete. (<a href="https://access.redhat.com/security/cve/CVE-2011-1833">CVE-2011-1833</a>) Dan Rosenberg and Marc Deslauriers discovered that eCryptfs incorrectly handled modifications to the mtab file when an error occurs. A local attacker could use this flaw to corrupt the mtab file, and possibly unmount arbitrary locations, leading to a denial of service. (<a href="https://access.redhat.com/security/cve/CVE-2011-1834">CVE-2011-1834</a>) Marc Deslauriers discovered that eCryptfs incorrectly handled keys when setting up an encrypted private directory. A local attacker could use this flaw to manipulate keys during creation of a new user. (<a href="https://access.redhat.com/security/cve/CVE-2011-1835">CVE-2011-1835</a>) Marc Deslauriers discovered that eCryptfs incorrectly handled permissions during recovery. A local attacker could use this flaw to possibly access another user's data during the recovery process. (<a href="https://access.redhat.com/security/cve/CVE-2011-1836">CVE-2011-1836</a>) Vasiliy Kulikov of Openwall discovered that eCryptfs incorrectly handled lock counters. A local attacker could use this flaw to possibly overwrite arbitrary files. (<a href="https://access.redhat.com/security/cve/CVE-2011-1837">CVE-2011-1837</a>) [1] <a href="https://launchpad.net/bugs/732628">https://launchpad.net/bugs/732628</a>
Credit: security@ubuntu.com security@ubuntu.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| debian/ecryptfs-utils | 111-5 111-6 111-7 | |
| eCryptfs-utils | <=89 | |
| eCryptfs-utils | =62 | |
| eCryptfs-utils | =63 | |
| eCryptfs-utils | =64 | |
| eCryptfs-utils | =65 | |
| eCryptfs-utils | =66 | |
| eCryptfs-utils | =67 | |
| eCryptfs-utils | =68 | |
| eCryptfs-utils | =69 | |
| eCryptfs-utils | =70 | |
| eCryptfs-utils | =71 | |
| eCryptfs-utils | =72 | |
| eCryptfs-utils | =73 | |
| eCryptfs-utils | =74 | |
| eCryptfs-utils | =75 | |
| eCryptfs-utils | =76 | |
| eCryptfs-utils | =77 | |
| eCryptfs-utils | =78 | |
| eCryptfs-utils | =79 | |
| eCryptfs-utils | =80 | |
| eCryptfs-utils | =81 | |
| eCryptfs-utils | =82 | |
| eCryptfs-utils | =83 | |
| eCryptfs-utils | =84 | |
| eCryptfs-utils | =85 | |
| eCryptfs-utils | =86 | |
| eCryptfs-utils | =87 | |
| eCryptfs-utils | =58 | |
| eCryptfs-utils | =59 | |
| eCryptfs-utils | =60 | |
| eCryptfs-utils | =61 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- https://launchpad.net/ecryptfs/+download
- https://bugzilla.redhat.com/show_bug.cgi?id=729465
- http://www.ubuntu.com/usn/USN-1188-1
- http://lists.opensuse.org/opensuse-security-announce/2011-08/msg00009.html
- https://launchpad.net/bugs/cve/CVE-2011-1831
- https://access.redhat.com/security/cve/CVE-2011-1831
- https://access.redhat.com/security/cve/CVE-2011-1832
- https://access.redhat.com/security/cve/CVE-2011-1833
- https://access.redhat.com/security/cve/CVE-2011-1834
- https://access.redhat.com/security/cve/CVE-2011-1835
- https://access.redhat.com/security/cve/CVE-2011-1836
- https://access.redhat.com/security/cve/CVE-2011-1837
- https://launchpad.net/bugs/732628
- https://bugzilla.redhat.com/show_bug.cgi/attachment.cgi?id=517480&action=diff
- https://bugzilla.redhat.com/show_bug.cgi/attachment.cgi?id=517480&action=edit
- https://bugzilla.redhat.com/show_bug.cgi/attachment.cgi?id=517481&action=diff
- https://bugzilla.redhat.com/show_bug.cgi/attachment.cgi?id=517481&action=edit
- https://bugzilla.redhat.com/show_bug.cgi/attachment.cgi?id=517482&action=diff
- https://bugzilla.redhat.com/show_bug.cgi/attachment.cgi?id=517482&action=edit
- https://bugzilla.redhat.com/show_bug.cgi/attachment.cgi?id=517483&action=diff
- https://bugzilla.redhat.com/show_bug.cgi/attachment.cgi?id=517483&action=edit
- https://bugzilla.redhat.com/show_bug.cgi/attachment.cgi?id=517484&action=diff
- https://bugzilla.redhat.com/show_bug.cgi/attachment.cgi?id=517484&action=edit
- https://launchpad.net/ubuntu/+source/ecryptfs-utils/89-0ubuntu2
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=729474
- https://bugzilla.redhat.com/show_bug.cgi/attachment.cgi?id=517492&action=diff
- https://bugzilla.redhat.com/show_bug.cgi/attachment.cgi?id=517492&action=edit
- https://launchpad.net/ubuntu/+source/ecryptfs-utils/83-0ubuntu3.2.10.04.1
- http://git.kernel.org/?p=linux/kernel/git/ecryptfs/ecryptfs-2.6.git;a=commit;h=764355487ea220fdc2faf128d577d7f679b91f97
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=730964
- https://rhn.redhat.com/errata/RHSA-2011-1241.html
- https://security-tracker.debian.org/tracker/CVE-2011-1831
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1831
- https://nvd.nist.gov/vuln/detail/CVE-2011-1831
- https://ubuntu.com/security/CVE-2011-1831
- agent/type
- collector/launchpad-cve
- source/Launchpad
- collector/redhat-bugzilla
- source/Red Hat
- alias/CVE-2011-1831
- agent/author
- agent/severity
- agent/weakness
- collector/security-tracker-debian
- source/Debian
- agent/software-canonical-lookup
- collector/mitre-cve
- source/MITRE
- collector/usn-cve
- source/Ubuntu
- agent/references
- agent/description
- agent/event
- agent/first-publish-date
- agent/last-modified-date
- agent/trending
- agent/source
- agent/softwarecombine
- agent/tags
- collector/nvd-index
- agent/software-canonical-lookup-request
- collector/nvd-historical
- collector/nvd-cve
- source/NVD
- package-manager/debian
- vendor/ecryptfs
- canonical/ecryptfs-utils
- version/ecryptfs-utils/89
- version/ecryptfs-utils/62
- version/ecryptfs-utils/63
- version/ecryptfs-utils/64
- version/ecryptfs-utils/65
- version/ecryptfs-utils/66
- version/ecryptfs-utils/67
- version/ecryptfs-utils/68
- version/ecryptfs-utils/69
- version/ecryptfs-utils/70
- version/ecryptfs-utils/71
- version/ecryptfs-utils/72
- version/ecryptfs-utils/73
- version/ecryptfs-utils/74
- version/ecryptfs-utils/75
- version/ecryptfs-utils/76
- version/ecryptfs-utils/77
- version/ecryptfs-utils/78
- version/ecryptfs-utils/79
- version/ecryptfs-utils/80
- version/ecryptfs-utils/81
- version/ecryptfs-utils/82
- version/ecryptfs-utils/83
- version/ecryptfs-utils/84
- version/ecryptfs-utils/85
- version/ecryptfs-utils/86
- version/ecryptfs-utils/87
- version/ecryptfs-utils/58
- version/ecryptfs-utils/59
- version/ecryptfs-utils/60
- version/ecryptfs-utils/61