It was discovered that loop-aes-utils, tools for mounting and manipulating filesystems, didn't drop privileged user and group permissions in the correct order in the mount and umount commands. This could potentially allow a local user to gain additional privileges. For the old stable distribution (sarge), this problem has been fixed in version 2.12p-4sarge2. For the stable distribution (etch), this problem has been fixed in version 2.12r-15+etch1. We recommend that you upgrade your loop-aes-utils package.
It was discovered that loop-aes-utils, tools for mounting and manipulating filesystems, didn't drop privileged user and group permissions in the correct order in the mount and umount commands. This could potentially allow a local user to gain additional privileges.
For the old stable distribution (sarge), this problem has been fixed in version 2.12p-4sarge2.
For the stable distribution (etch), this problem has been fixed in version 2.12r-15+etch4.
We recommend that you upgrade your loop-aes-utils package.
MD5 checksums of the listed files are available in the original advisory.