|
|
Log in / Subscribe / Register

ecryptfs-utils: information disclosure

Package(s):ecryptfs-utils CVE #(s):CVE-2014-9687
Created:March 11, 2015 Updated:July 30, 2015
Description: From the Ubuntu advisory:

Sylvain Pelissier discovered that eCryptfs did not generate a random salt when encrypting the mount passphrase with the login password. An attacker could use this issue to discover the login password used to protect the mount passphrase and gain unintended access to the encrypted files.

Alerts:
openSUSE openSUSE-SU-2016:0291-1 ecryptfs-utils 2016-01-31
Fedora FEDORA-2015-10656 ecryptfs-utils 2015-07-30
Fedora FEDORA-2015-10581 ecryptfs-utils 2015-07-30
Arch Linux ASA-201503-14 ecryptfs-utils 2015-03-17
Ubuntu USN-2524-1 ecryptfs-utils 2015-03-10
to post comments


Copyright © 2026, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds