Novell Home

CVE-2011-1835

Common Vulnerabilities and Exposures

[Previous] [Index] [Next]

Upstream information

CVE-2011-1835 at MITRE

Description

The encrypted private-directory setup process in utils/ecryptfs-setup-private in ecryptfs-utils before 90 does not properly ensure that the passphrase file is created, which might allow local users to bypass intended access restrictions at a certain time in the new-user creation steps.

NVD CVSS v2 Base Score: 4.4 (AV:L/AC:M/Au:N/C:P/I:P/A:P)

Novell/SUSE information

Novell Bugzilla entry: 709771, 711539

SUSE Security Advisories:

List of released packages

Product(s) Fixed package version(s) References
openSUSE 11.3
  • ecryptfs-utils-debuginfo >= 83-3.3.1
  • ecryptfs-utils-debuginfo-32bit >= 83-3.3.1
  • ecryptfs-utils-debugsource >= 83-3.3.1
openSUSE 11.3
  • ecryptfs-utils >= 83-3.3.1
  • ecryptfs-utils-32bit >= 83-3.3.1
openSUSE 11.4 DEBUGINFO
  • ecryptfs-utils-debuginfo >= 83-6.7.1
  • ecryptfs-utils-debuginfo-32bit >= 83-6.7.1
  • ecryptfs-utils-debugsource >= 83-6.7.1
openSUSE 11.4
  • ecryptfs-utils >= 83-6.7.1
  • ecryptfs-utils-32bit >= 83-6.7.1
SLE 11 SP1 DEBUGINFO
  • ecryptfs-utils-debuginfo >= 61-1.29.1
  • ecryptfs-utils-debugsource >= 61-1.29.1
sles11-sp1.ia64
sles11-sp1-vmware.x86
sled11-sp1.x86-64
sles11-sp1.x86
sles11-sp1.x86-64
sles11-sp1-vmware.x86-64
sled11-sp1.x86
sles11-sp1.ppc
sles11-sp1.s390x
SAT Patch Nr: 4956
SLE 11 SP1 DEBUGINFO
  • ecryptfs-utils-debuginfo >= 61-1.29.1
  • ecryptfs-utils-debuginfo-x86 >= 61-1.29.1
  • ecryptfs-utils-debugsource >= 61-1.29.1
sles11-sp1.ia64
sles11-sp1-vmware.x86
sled11-sp1.x86-64
sles11-sp1.x86
sles11-sp1.x86-64
sles11-sp1-vmware.x86-64
sled11-sp1.x86
sles11-sp1.ppc
sles11-sp1.s390x
SAT Patch Nr: 4956
SLE 11 SP1 DEBUGINFO
  • ecryptfs-utils-debuginfo >= 61-1.29.1
  • ecryptfs-utils-debuginfo-32bit >= 61-1.29.1
  • ecryptfs-utils-debugsource >= 61-1.29.1
sles11-sp1.ia64
sles11-sp1-vmware.x86
sled11-sp1.x86-64
sles11-sp1.x86
sles11-sp1.x86-64
sles11-sp1-vmware.x86-64
sled11-sp1.x86
sles11-sp1.ppc
sles11-sp1.s390x
SAT Patch Nr: 4956
SUSE Linux Enterprise Desktop 11 SP1
SUSE Linux Enterprise Server 11 SP1
SUSE Linux Enterprise Server 11 SP1 for VMware
  • ecryptfs-utils >= 61-1.29.1
sles11-sp1.ia64
sles11-sp1-vmware.x86
sled11-sp1.x86-64
sles11-sp1.x86
sles11-sp1.x86-64
sles11-sp1-vmware.x86-64
sled11-sp1.x86
sles11-sp1.ppc
sles11-sp1.s390x
SAT Patch Nr: 4956
SUSE Linux Enterprise Desktop 11 SP1
SUSE Linux Enterprise Server 11 SP1
SUSE Linux Enterprise Server 11 SP1 for VMware
  • ecryptfs-utils >= 61-1.29.1
  • ecryptfs-utils-32bit >= 61-1.29.1
sles11-sp1.ia64
sles11-sp1-vmware.x86
sled11-sp1.x86-64
sles11-sp1.x86
sles11-sp1.x86-64
sles11-sp1-vmware.x86-64
sled11-sp1.x86
sles11-sp1.ppc
sles11-sp1.s390x
SAT Patch Nr: 4956
SUSE Linux Enterprise Server 11 SP1
  • ecryptfs-utils >= 61-1.29.1
  • ecryptfs-utils-x86 >= 61-1.29.1
sles11-sp1.ia64
sles11-sp1-vmware.x86
sled11-sp1.x86-64
sles11-sp1.x86
sles11-sp1.x86-64
sles11-sp1-vmware.x86-64
sled11-sp1.x86
sles11-sp1.ppc
sles11-sp1.s390x
SAT Patch Nr: 4956

© 2014 Novell