CVE Vulnerabilities

CVE-2011-1836

Published: Feb 15, 2014 | Modified: Mar 08, 2014
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
4.6 MEDIUM
AV:L/AC:L/Au:N/C:P/I:P/A:P
RedHat/V2
1.9 LOW
AV:L/AC:M/Au:N/C:P/I:N/A:N
RedHat/V3
Ubuntu

utils/ecryptfs-recover-private in ecryptfs-utils before 90 does not establish a subdirectory with safe permissions, which might allow local users to bypass intended access restrictions via standard filesystem operations during the recovery process.

Affected Software

Name Vendor Start Version End Version
Ecryptfs-utils Ecryptfs 62 62
Ecryptfs-utils Ecryptfs 63 63
Ecryptfs-utils Ecryptfs 64 64
Ecryptfs-utils Ecryptfs 65 65
Ecryptfs-utils Ecryptfs 66 66
Ecryptfs-utils Ecryptfs 67 67
Ecryptfs-utils Ecryptfs 68 68
Ecryptfs-utils Ecryptfs 69 69
Ecryptfs-utils Ecryptfs 70 70
Ecryptfs-utils Ecryptfs 71 71
Ecryptfs-utils Ecryptfs 72 72
Ecryptfs-utils Ecryptfs 73 73
Ecryptfs-utils Ecryptfs 74 74
Ecryptfs-utils Ecryptfs 75 75
Ecryptfs-utils Ecryptfs 76 76
Ecryptfs-utils Ecryptfs 77 77
Ecryptfs-utils Ecryptfs 78 78
Ecryptfs-utils Ecryptfs 79 79
Ecryptfs-utils Ecryptfs 80 80
Ecryptfs-utils Ecryptfs 81 81
Ecryptfs-utils Ecryptfs 82 82
Ecryptfs-utils Ecryptfs 83 83
Ecryptfs-utils Ecryptfs 84 84
Ecryptfs-utils Ecryptfs 85 85
Ecryptfs-utils Ecryptfs 86 86
Ecryptfs-utils Ecryptfs 87 87
Ecryptfs-utils Ecryptfs * 89
Ecryptfs_utils Ecryptfs 58 58
Ecryptfs_utils Ecryptfs 59 59
Ecryptfs_utils Ecryptfs 60 60
Ecryptfs_utils Ecryptfs 61 61
Ecryptfs-utils Ubuntu devel *
Ecryptfs-utils Ubuntu natty *

References