Upstream information

CVE-2011-1837 at MITRE

Description

The lock-counter implementation in utils/mount.ecryptfs_private.c in ecryptfs-utils before 90 allows local users to overwrite arbitrary files via unspecified vectors.

SUSE information

CVSS v2 Scores
  National Vulnerability Database
Base Score 3.58
Vector AV:L/AC:L/Au:N/C:N/I:P/A:P
Access Vector Local
Access Complexity Low
Authentication None
Confidentiality Impact None
Integrity Impact Partial
Availability Impact Partial
SUSE Bugzilla entries: 709771 [RESOLVED / FIXED], 711539 [RESOLVED / FIXED]

SUSE Security Advisories:

List of released packages

Product(s) Fixed package version(s) References
SUSE Linux Enterprise Desktop 12
  • ecryptfs-utils >= 103-5.35
  • ecryptfs-utils-32bit >= 103-5.35
Patchnames:
SUSE Linux Enterprise Desktop 12 GA ecryptfs-utils
SUSE Linux Enterprise Desktop 12 SP1
  • ecryptfs-utils >= 103-5.35
  • ecryptfs-utils-32bit >= 103-5.35
Patchnames:
SUSE Linux Enterprise Desktop 12 SP1 GA ecryptfs-utils
SUSE Linux Enterprise Desktop 12 SP2
  • ecryptfs-utils >= 103-7.1
  • ecryptfs-utils-32bit >= 103-7.1
Patchnames:
SUSE Linux Enterprise Desktop 12 SP2 GA ecryptfs-utils
SUSE Linux Enterprise Server 12
  • ecryptfs-utils >= 103-5.8
  • ecryptfs-utils-32bit >= 103-5.35
Patchnames:
SUSE Linux Enterprise Server 12 GA ecryptfs-utils
SUSE Linux Enterprise Server 12 SP1
  • ecryptfs-utils >= 103-5.8
  • ecryptfs-utils-32bit >= 103-5.35
Patchnames:
SUSE Linux Enterprise Server 12 SP1 GA ecryptfs-utils
SUSE Linux Enterprise Server 12 SP2
  • ecryptfs-utils >= 103-7.1
  • ecryptfs-utils-32bit >= 103-7.1
Patchnames:
SUSE Linux Enterprise Server 12 SP2 GA ecryptfs-utils
SUSE Linux Enterprise Server for Raspberry Pi 12 SP2
  • ecryptfs-utils >= 103-7.1
Patchnames:
SUSE Linux Enterprise Server for Raspberry Pi 12 SP2 GA ecryptfs-utils
openSUSE 11.3
  • ecryptfs-utils-debuginfo >= 83-3.3.1
  • ecryptfs-utils-debuginfo-32bit >= 83-3.3.1
  • ecryptfs-utils-debugsource >= 83-3.3.1
openSUSE 11.3
  • ecryptfs-utils >= 83-3.3.1
  • ecryptfs-utils-32bit >= 83-3.3.1
openSUSE 11.4
  • ecryptfs-utils >= 83-6.7.1
  • ecryptfs-utils-32bit >= 83-6.7.1
SUSE Linux Enterprise Desktop 11 SP1
SUSE Linux Enterprise Server 11 SP1
SUSE Linux Enterprise Server 11 SP1 for VMware
  • ecryptfs-utils >= 61-1.29.1
sles11-sp1.ia64
sles11-sp1-vmware.x86
sled11-sp1.x86-64
sles11-sp1.x86
sles11-sp1.x86-64
sles11-sp1-vmware.x86-64
sled11-sp1.x86
sles11-sp1.ppc
sles11-sp1.s390x
SAT Patch Nr: 4956
SUSE Linux Enterprise Desktop 11 SP1
SUSE Linux Enterprise Server 11 SP1
SUSE Linux Enterprise Server 11 SP1 for VMware
  • ecryptfs-utils >= 61-1.29.1
  • ecryptfs-utils-32bit >= 61-1.29.1
sles11-sp1.ia64
sles11-sp1-vmware.x86
sled11-sp1.x86-64
sles11-sp1.x86
sles11-sp1.x86-64
sles11-sp1-vmware.x86-64
sled11-sp1.x86
sles11-sp1.ppc
sles11-sp1.s390x
SAT Patch Nr: 4956
SUSE Linux Enterprise Server 11 SP1
  • ecryptfs-utils >= 61-1.29.1
  • ecryptfs-utils-x86 >= 61-1.29.1
sles11-sp1.ia64
sles11-sp1-vmware.x86
sled11-sp1.x86-64
sles11-sp1.x86
sles11-sp1.x86-64
sles11-sp1-vmware.x86-64
sled11-sp1.x86
sles11-sp1.ppc
sles11-sp1.s390x
SAT Patch Nr: 4956
openSUSE Tumbleweed
  • ecryptfs-utils >= 108-2.5
  • ecryptfs-utils-32bit >= 108-2.5
  • ecryptfs-utils-devel >= 108-2.5
  • ecryptfs-utils-devel-32bit >= 108-2.5
  • libecryptfs1 >= 108-2.5
  • libecryptfs1-32bit >= 108-2.5
Patchnames:
openSUSE Tumbleweed GA ecryptfs-utils