Lucene search
Arch LinuxASA-201601-25HistoryJan 25, 2016 - 12:00 a.m.
ecryptfs-utils: privilege escalation
2016-01-2500:00:00
Arch Linux
lists.archlinux.org
27
EPSS
0.001
Percentile
49.1%
An unprivileged user can mount an ecryptfs over /proc/$pid because
according to stat(), it is a normal directory and owned by the user.
However, the user is not actually permitted to create arbitrary
directory entries in /proc/$pid, and ecryptfs’ behavior might be
enabling privilege escalation attacks with the help of other programs
that use procfs.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| any | any | any | ecryptfs-utils | < 108-2 | UNKNOWN |
Related
debian
debian
[SECURITY] [DSA 3450-1] ecryptfs-utils security update
2016-01-20 16:05:00
[SECURITY] [DSA 3450-1] ecryptfs-utils security update
2016-01-20 16:05:00
[SECURITY] [DLA 397-1] ecryptfs-utils security update
2016-01-20 16:24:20
openvas
openvas
Debian: Security Advisory (DSA-3450-1)
2016-01-19 00:00:00
Debian Security Advisory DSA 3450-1 (ecryptfs-utils - security update)
2016-01-20 00:00:00
Fedora Update for ecryptfs-utils FEDORA-2016-7
2016-02-17 00:00:00
prion
prion
Design/Logic Flaw
2016-01-22 15:59:00
osv
osv
ecryptfs-utils - security update
2016-01-20 00:00:00
ecryptfs-utils-108-2.5 on GA media
2024-06-15 00:00:00
fedora
fedora
[SECURITY] Fedora 22 Update: ecryptfs-utils-109-1.fc22
2016-02-17 04:27:27
[SECURITY] Fedora 23 Update: ecryptfs-utils-109-1.fc23
2016-02-17 04:04:07
cve
cve
CVE-2016-1572
2016-01-22 15:59:07
ubuntucve
ubuntucve
CVE-2016-1572
2016-01-20 00:00:00
nessus
nessus
openSUSE Security Update : ecryptfs-utils (openSUSE-2016-125)
2016-02-03 00:00:00
Fedora 23 : ecryptfs-utils-109-1.fc23 (2016-b02ad4e424)
2016-03-04 00:00:00
Ubuntu 14.04 LTS : eCryptfs vulnerability (USN-2876-1)
2016-01-21 00:00:00
debiancve
debiancve
CVE-2016-1572
2016-01-22 15:59:07
cvelist
cvelist
CVE-2016-1572
2016-01-22 15:00:00
nvd
nvd
CVE-2016-1572
2016-01-22 15:59:07
ubuntu
ubuntu
eCryptfs vulnerability
2016-01-20 00:00:00