Overview

File _patchinfo of Package patchinfo.import4986

<patchinfo incident="ecryptfs-utils" version="4986">
  <issue tracker="bnc" id="709771" />
  <category>security</category>
  <rating>low</rating>
  <summary>ecryptfs-utils: Update to fix various symlink race attacks</summary>
  <description>This update of ecryptfs-utils fixes several security
problems:

  - CVE-2011-1831 - Race condition when checking mountpoint
    during mount.
  - CVE-2011-1832 - Race condition when checking mountpoint
    during unmount.
  - CVE-2011-1833 - Race condition when checking source
    during mount.
  - CVE-2011-1834 - Improper mtab handling allowing
    corruption due to resource limits, signals, etc.
  - CVE-2011-1835 - Key poisoning in ecryptfs-setup-private
    due to insecure temp directory.
  - CVE-2011-1837 - Predictable lock counter name and
    associated races.
</description>
  <packager>adrianSuSE</packager>
</patchinfo>
openSUSE Build Service is sponsored by
Places