CVE-2011-1832

Name of the Vulnerable Software and Affected Versions ecryptfs-utils versions prior to 90 ecryptfs-utils-32bit (affected versions not specified) ecryptfs-utils-gui-75 (affected versions not specified) ecryptfs-utils-devel-75 (affected versions not specified) ecryptfs-utils-75 (affected versions not specified) ecryptfs-utils-82 (affected versions not specified) ecryptfs-utils-devel-82 (affected versions not specified) ecryptfs-utils-x86-61 (affected versions not specified) ecryptfs-utils-debuginfo-82 (affected versions not specified)

Description The issue concerns multiple vulnerabilities in the ecryptfs-utils package, which can lead to a breach of confidentiality, integrity, and availability of protected information. These vulnerabilities can be exploited locally, allowing an attacker to remove directories via a umount system call. The mount.ecryptfs private.c file in ecryptfs-utils before version 90 does not properly check mountpoint permissions.

Recommendations For ecryptfs-utils versions prior to 90, update to version 90 or later to resolve the issue. For ecryptfs-utils-32bit, ecryptfs-utils-gui-75, ecryptfs-utils-devel-75, ecryptfs-utils-75, ecryptfs-utils-82, ecryptfs-utils-devel-82, ecryptfs-utils-x86-61, and ecryptfs-utils-debuginfo-82, at the moment, there is no information about a newer version that contains a fix for this vulnerability.