blob: 0a5e328d8c2f0387de9feb14ae7eaa1d43549108 (
plain) (
blame)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
|
Candidate: CVE-2009-2406
Description:
Ramon de Carvalho Valle discovered that eCryptfs did not correctly
validate certain buffer sizes. A local attacker could create specially
crafted eCryptfs files to crash the system or gain elevated privileges.
References:
http://www.ubuntu.com/usn/usn-807-1
Ubuntu-Description:
Notes:
Bugs:
upstream: released (2.6.31-rc5) [6352a29305373ae6196491e6d4669f301e26492e]
linux-2.6: released (2.6.30-5) [bugfix/all/ecryptfs-check-tag-11-literal-data-buffer-size.patch]
2.6.18-etch-security: N/A "no ecryptfs"
2.6.24-etch-security: released (2.6.24-6~etchnhalf.8etch2) [bugfix/all/ecryptfs-check-tag-11-literal-data-buffer-size.patch]
2.6.26-lenny-security: released (2.6.26-17lenny1) [bugfix/all/ecryptfs-check-tag-11-literal-data-buffer-size.patch]
2.6.15-dapper-security:
2.6.22-gutsy-security:
2.6.24-hardy-security:
2.6.27-intrepid-security:
|