You are here
Home > Preporuke > Sigurnosni nedostaci programskog paketa ecryptfs-utils

Sigurnosni nedostaci programskog paketa ecryptfs-utils

==========================================================================
Ubuntu Security Notice USN-3032-1
July 14, 2016

ecryptfs-utils vulnerability
==========================================================================

A security issue affects these releases of Ubuntu and its derivatives:

– Ubuntu 16.04 LTS
– Ubuntu 15.10

Summary:

eCryptfs could be made to expose sensitive information.

Software Description:
– ecryptfs-utils: eCryptfs cryptographic filesystem utilities

Details:

It was discovered that eCryptfs incorrectly configured the encrypted swap
partition for certain drive types. An attacker could use this issue to discover
sensitive information.

Update instructions:

The problem can be corrected by updating your system to the following
package versions:

Ubuntu 16.04 LTS:
ecryptfs-utils 111-0ubuntu1.1

Ubuntu 15.10:
ecryptfs-utils 108-0ubuntu1.2

After a standard system update you need to reboot your computer to make
all the necessary changes.

References:
http://www.ubuntu.com/usn/usn-3032-1
https://launchpad.net/bugs/1597154

Package Information:
https://launchpad.net/ubuntu/+source/ecryptfs-utils/111-0ubuntu1.1
https://launchpad.net/ubuntu/+source/ecryptfs-utils/108-0ubuntu1.2

—–BEGIN PGP SIGNATURE—–
Version: GnuPG v1
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=giS6
—–END PGP SIGNATURE—–

Top
More in Preporuke
Sigurnosni nedostatak programskog paketa sqlite

Otkriven je sigurnosni nedostatak u programskom paketu sqlite za Fedoru. Otkriveni nedostatak isticao se u algoritmu za pretraživanje privremenih direktorija...

Close