CVE Vulnerabilities

CVE-2011-1831

Published: Feb 15, 2014 | Modified: Mar 08, 2014
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
4.6 MEDIUM
AV:L/AC:L/Au:N/C:P/I:P/A:P
RedHat/V2
4.6 MODERATE
AV:L/AC:L/Au:N/C:P/I:P/A:P
RedHat/V3
Ubuntu
MEDIUM

utils/mount.ecryptfs_private.c in ecryptfs-utils before 90 does not properly check mountpoint permissions, which allows local users to effectively replace any directory with a new filesystem, and consequently gain privileges, via a mount system call.

Affected Software

Name Vendor Start Version End Version
Ecryptfs-utils Ecryptfs * 89 (including)
Ecryptfs-utils Ecryptfs 62 (including) 62 (including)
Ecryptfs-utils Ecryptfs 63 (including) 63 (including)
Ecryptfs-utils Ecryptfs 64 (including) 64 (including)
Ecryptfs-utils Ecryptfs 65 (including) 65 (including)
Ecryptfs-utils Ecryptfs 66 (including) 66 (including)
Ecryptfs-utils Ecryptfs 67 (including) 67 (including)
Ecryptfs-utils Ecryptfs 68 (including) 68 (including)
Ecryptfs-utils Ecryptfs 69 (including) 69 (including)
Ecryptfs-utils Ecryptfs 70 (including) 70 (including)
Ecryptfs-utils Ecryptfs 71 (including) 71 (including)
Ecryptfs-utils Ecryptfs 72 (including) 72 (including)
Ecryptfs-utils Ecryptfs 73 (including) 73 (including)
Ecryptfs-utils Ecryptfs 74 (including) 74 (including)
Ecryptfs-utils Ecryptfs 75 (including) 75 (including)
Ecryptfs-utils Ecryptfs 76 (including) 76 (including)
Ecryptfs-utils Ecryptfs 77 (including) 77 (including)
Ecryptfs-utils Ecryptfs 78 (including) 78 (including)
Ecryptfs-utils Ecryptfs 79 (including) 79 (including)
Ecryptfs-utils Ecryptfs 80 (including) 80 (including)
Ecryptfs-utils Ecryptfs 81 (including) 81 (including)
Ecryptfs-utils Ecryptfs 82 (including) 82 (including)
Ecryptfs-utils Ecryptfs 83 (including) 83 (including)
Ecryptfs-utils Ecryptfs 84 (including) 84 (including)
Ecryptfs-utils Ecryptfs 85 (including) 85 (including)
Ecryptfs-utils Ecryptfs 86 (including) 86 (including)
Ecryptfs-utils Ecryptfs 87 (including) 87 (including)
Ecryptfs_utils Ecryptfs 58 (including) 58 (including)
Ecryptfs_utils Ecryptfs 59 (including) 59 (including)
Ecryptfs_utils Ecryptfs 60 (including) 60 (including)
Ecryptfs_utils Ecryptfs 61 (including) 61 (including)
Red Hat Enterprise Linux 5 RedHat ecryptfs-utils-0:75-5.el5_7.2 *
Red Hat Enterprise Linux 6 RedHat ecryptfs-utils-0:82-6.el6_1.3 *
Ecryptfs-utils Ubuntu devel *
Ecryptfs-utils Ubuntu lucid *
Ecryptfs-utils Ubuntu maverick *
Ecryptfs-utils Ubuntu natty *

References