Vulnerabilities > Ecryptfs > Ecryptfs Utils > 75
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2016-07-22 | CVE-2016-6224 | Improper Input Validation vulnerability in multiple products ecryptfs-setup-swap in eCryptfs does not prevent the unencrypted swap partition from activating during boot when using GPT partitioning on a (1) NVMe or (2) MMC drive, which allows local users to obtain sensitive information via unspecified vectors. | 3.3 |
2016-01-22 | CVE-2016-1572 | Improper Privilege Management vulnerability in multiple products mount.ecryptfs_private.c in eCryptfs-utils does not validate mount destination filesystem types, which allows local users to gain privileges by mounting over a nonstandard filesystem, as demonstrated by /proc/$pid. | 4.6 |
2014-02-15 | CVE-2011-1837 | Permissions, Privileges, and Access Controls vulnerability in Ecryptfs Ecryptfs-Utils and Ecryptfs Utils The lock-counter implementation in utils/mount.ecryptfs_private.c in ecryptfs-utils before 90 allows local users to overwrite arbitrary files via unspecified vectors. | 3.6 |
2014-02-15 | CVE-2011-1836 | Permissions, Privileges, and Access Controls vulnerability in Ecryptfs Ecryptfs-Utils and Ecryptfs Utils utils/ecryptfs-recover-private in ecryptfs-utils before 90 does not establish a subdirectory with safe permissions, which might allow local users to bypass intended access restrictions via standard filesystem operations during the recovery process. | 4.6 |
2014-02-15 | CVE-2011-1835 | Credentials Management vulnerability in Ecryptfs Ecryptfs-Utils and Ecryptfs Utils The encrypted private-directory setup process in utils/ecryptfs-setup-private in ecryptfs-utils before 90 does not properly ensure that the passphrase file is created, which might allow local users to bypass intended access restrictions at a certain time in the new-user creation steps. | 4.4 |
2014-02-15 | CVE-2011-1834 | Permissions, Privileges, and Access Controls vulnerability in Ecryptfs Ecryptfs-Utils and Ecryptfs Utils utils/mount.ecryptfs_private.c in ecryptfs-utils before 90 does not properly maintain the mtab file during error conditions, which allows local users to cause a denial of service (table corruption) or bypass intended unmounting restrictions via a umount system call. | 2.1 |
2014-02-15 | CVE-2011-1832 | Permissions, Privileges, and Access Controls vulnerability in Ecryptfs Ecryptfs-Utils and Ecryptfs Utils utils/mount.ecryptfs_private.c in ecryptfs-utils before 90 does not properly check mountpoint permissions, which allows local users to remove directories via a umount system call. | 2.1 |
2014-02-15 | CVE-2011-1831 | Permissions, Privileges, and Access Controls vulnerability in Ecryptfs Ecryptfs-Utils and Ecryptfs Utils utils/mount.ecryptfs_private.c in ecryptfs-utils before 90 does not properly check mountpoint permissions, which allows local users to effectively replace any directory with a new filesystem, and consequently gain privileges, via a mount system call. | 4.6 |