Canonical · Ecryptfs · CVE-2014-9687
**Name of the Vulnerable Software and Affected Versions**
eCryptfs versions 104 and earlier
**Description**
The issue makes it easier for attackers to obtain user passwords via a brute force attack because eCryptfs uses a default salt to encrypt the mount passphrase.
**Recommendations**
For versions 104 and earlier, consider using a unique salt for each user to encrypt the mount passphrase as a mitigation measure.
At the moment, there is no information about a newer version that contains a fix for this vulnerability.