mount.ecryptfs_private.c in eCryptfs-utils does not validate mount destination filesystem types, which allows local users to gain privileges by mounting over a nonstandard filesystem, as demonstrated by /proc/$pid.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
ecryptfs ecryptfs-utils |
||
canonical ubuntu linux 12.04 |
||
canonical ubuntu linux 14.04 |
||
canonical ubuntu linux 15.04 |
||
canonical ubuntu linux 15.10 |
||
opensuse leap 42.1 |
||
opensuse opensuse 13.1 |
||
opensuse opensuse 13.2 |
||
debian debian linux 7.0 |
||
debian debian linux 8.0 |
||
fedoraproject fedora 22 |
||
fedoraproject fedora 23 |