PT-2016-6804 · Linux+2 · Ecryptfs+2

Jason Gerard Derose

Published

2016-07-14

Updated

2018-02-01

CVE-2016-6224

CVSS v3.1

3.3

Low

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

Name of the Vulnerable Software and Affected Versions eCryptfs (affected versions not specified)

Description The issue allows local users to obtain sensitive information via unspecified vectors because ecryptfs-setup-swap in eCryptfs does not prevent the unencrypted swap partition from activating during boot when using GPT partitioning on an NVMe or MMC drive.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

RCE

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-20

Related Identifiers

CVE-2016-6224

SUSE-SU-2018:0336-1

USN-3032-1

Affected Products

Suse

Ubuntu

Ecryptfs

PT-2016-6804 · Linux+2 · Ecryptfs+2

CVE-2016-6224

Weakness Enumeration

Related Identifiers

Affected Products

References · 20