Ubuntu 10.04 LTS / 10.10 / 11.04 : ecryptfs-utils vulnerabilities (USN-1188-1)

Ubuntu Security Notice (C) 2011-2016 Canonical, Inc. / NASL script (C) 2011-2016 Tenable Network Security, Inc.


Synopsis :

The remote Ubuntu host is missing a security-related patch.

Description :

Vasiliy Kulikov and Dan Rosenberg discovered that eCryptfs incorrectly
validated permissions on the requested mountpoint. A local attacker
could use this flaw to mount to arbitrary locations, leading to
privilege escalation. (CVE-2011-1831)

Vasiliy Kulikov and Dan Rosenberg discovered that eCryptfs incorrectly
validated permissions on the requested mountpoint. A local attacker
could use this flaw to unmount to arbitrary locations, leading to a
denial of service. (CVE-2011-1832)

Vasiliy Kulikov and Dan Rosenberg discovered that eCryptfs incorrectly
validated permissions on the requested source directory. A local
attacker could use this flaw to mount an arbitrary directory, possibly
leading to information disclosure. A pending kernel update will
provide the other half of the fix for this issue. (CVE-2011-1833)

Dan Rosenberg and Marc Deslauriers discovered that eCryptfs
incorrectly handled modifications to the mtab file when an error
occurs. A local attacker could use this flaw to corrupt the mtab file,
and possibly unmount arbitrary locations, leading to a denial of
service. (CVE-2011-1834)

Marc Deslauriers discovered that eCryptfs incorrectly handled keys
when setting up an encrypted private directory. A local attacker could
use this flaw to manipulate keys during creation of a new user.
(CVE-2011-1835)

Marc Deslauriers discovered that eCryptfs incorrectly handled
permissions during recovery. A local attacker could use this flaw to
possibly access another user's data during the recovery process. This
issue only applied to Ubuntu 11.04. (CVE-2011-1836)

Vasiliy Kulikov discovered that eCryptfs incorrectly handled lock
counters. A local attacker could use this flaw to possibly overwrite
arbitrary files. The default symlink restrictions in Ubuntu 10.10 and
11.04 should protect against this issue. (CVE-2011-1837).

Note that Tenable Network Security has extracted the preceding
description block directly from the Ubuntu security advisory. Tenable
has attempted to automatically clean and format it as much as possible
without introducing additional issues.

Solution :

Update the affected ecryptfs-utils package.

Risk factor :

Medium / CVSS Base Score : 4.6
(CVSS2#AV:L/AC:L/Au:N/C:P/I:P/A:P)

Family: Ubuntu Local Security Checks

Nessus Plugin ID: 55810 ()

Bugtraq ID:

CVE ID: CVE-2011-1831
CVE-2011-1832
CVE-2011-1833
CVE-2011-1834
CVE-2011-1835
CVE-2011-1836
CVE-2011-1837

Ready to Scan Unlimited IPs & Run Compliance Checks?

Upgrade to Nessus Professional today!

Buy Now

Combine the Power of Nessus with the Ease of Cloud

Start your free Nessus Cloud trial now!

Begin Free Trial