Security update for ecryptfs-utils
SUSE Security Update: Security update for ecryptfs-utils
ecryptfs-utils was updated to fix a security issue and some
bugs.
Security issue fixed: mount.ecryptfs_private did not set
correct group ownerships when it modifies mtab
(CVE-2011-3145).
Also some bugs that made this set of tools non-working were
fixed.
You need to manually hand setuid root permissions to
/sbin/mount.ecryptfs_private if you want to use it as a
non-root user.
Security Issues:
* CVE-2011-3145
>
http://support.novell.com/security/cve/CVE-2011-3145.html
https://bugzilla.novell.com/735342
https://bugzilla.novell.com/745372
https://bugzilla.novell.com/745581
https://bugzilla.novell.com/745584
https://bugzilla.novell.com/745825
http://download.suse.com/patch/finder/?keywords=e78040dfb7b945bcde597140adc40742
| Announcement ID: | SUSE-SU-2012:0682-1 |
| Rating: | moderate |
| References: | #735342 #745372 #745581 #745584 #745825 |
| Affected Products: |
An update that solves one vulnerability and has four fixes is now available.
Description:
ecryptfs-utils was updated to fix a security issue and some
bugs.
Security issue fixed: mount.ecryptfs_private did not set
correct group ownerships when it modifies mtab
(CVE-2011-3145).
Also some bugs that made this set of tools non-working were
fixed.
You need to manually hand setuid root permissions to
/sbin/mount.ecryptfs_private if you want to use it as a
non-root user.
Security Issues:
* CVE-2011-3145
Contraindications:
None
Patch Instructions:
To install this SUSE Security Update use YaST online_update.
Alternatively you can run the command listed for your product:
- SUSE Linux Enterprise Server 11 SP2:
zypper in -t patch slessp1-ecryptfs-utils-6187 - SUSE Linux Enterprise Server 11 SP1 for VMware:
zypper in -t patch slessp1-ecryptfs-utils-6187 - SUSE Linux Enterprise Server 11 SP1:
zypper in -t patch slessp1-ecryptfs-utils-6187 - SUSE Linux Enterprise Desktop 11 SP2:
zypper in -t patch sledsp1-ecryptfs-utils-6187 - SUSE Linux Enterprise Desktop 11 SP1:
zypper in -t patch sledsp1-ecryptfs-utils-6187
To bring your system up-to-date, use "zypper patch".
Package List:
- SUSE Linux Enterprise Server 11 SP2 (i586 ia64 ppc64 s390x x86_64):
- ecryptfs-utils-61-1.33.1
- SUSE Linux Enterprise Server 11 SP2 (ppc64 s390x x86_64):
- ecryptfs-utils-32bit-61-1.33.1
- SUSE Linux Enterprise Server 11 SP2 (ia64):
- ecryptfs-utils-x86-61-1.33.1
- SUSE Linux Enterprise Server 11 SP1 for VMware (i586 x86_64):
- ecryptfs-utils-61-1.33.1
- SUSE Linux Enterprise Server 11 SP1 for VMware (x86_64):
- ecryptfs-utils-32bit-61-1.33.1
- SUSE Linux Enterprise Server 11 SP1 (i586 ia64 ppc64 s390x x86_64):
- ecryptfs-utils-61-1.33.1
- SUSE Linux Enterprise Server 11 SP1 (ppc64 s390x x86_64):
- ecryptfs-utils-32bit-61-1.33.1
- SUSE Linux Enterprise Server 11 SP1 (ia64):
- ecryptfs-utils-x86-61-1.33.1
- SUSE Linux Enterprise Desktop 11 SP2 (i586 x86_64):
- ecryptfs-utils-61-1.33.1
- SUSE Linux Enterprise Desktop 11 SP2 (x86_64):
- ecryptfs-utils-32bit-61-1.33.1
- SUSE Linux Enterprise Desktop 11 SP1 (i586 x86_64):
- ecryptfs-utils-61-1.33.1
- SUSE Linux Enterprise Desktop 11 SP1 (x86_64):
- ecryptfs-utils-32bit-61-1.33.1