CVE-2017-6964

Name of the Vulnerable Software and Affected Versions eject versions 2.1.5+deb1+cvs20081104-13.1 and earlier on Debian eject versions before 2.1.5+deb1+cvs20081104-13.1ubuntu0.16.10.1 on Ubuntu 16.10 eject versions before 2.1.5+deb1+cvs20081104-13.1ubuntu0.16.04.1 on Ubuntu 16.04 LTS eject versions before 2.1.5+deb1+cvs20081104-13.1ubuntu0.14.04.1 on Ubuntu 14.04 LTS eject versions before 2.1.5+deb1+cvs20081104-9ubuntu0.1 on Ubuntu 12.04 LTS

Description The issue is related to insufficient error handling in the dmcrypt-get-device utility, which is part of the eject package in Debian and Ubuntu. This utility does not check the return value of the setuid or setgid function, potentially allowing an attacker to execute code with root privileges that was intended for an unprivileged user.

Recommendations For eject versions 2.1.5+deb1+cvs20081104-13.1 and earlier on Debian, update to a version later than 2.1.5+deb1+cvs20081104-13.1. For eject versions before 2.1.5+deb1+cvs20081104-13.1ubuntu0.16.10.1 on Ubuntu 16.10, update to version 2.1.5+deb1+cvs20081104-13.1ubuntu0.16.10.1 or later. For eject versions before 2.1.5+deb1+cvs20081104-13.1ubuntu0.16.04.1 on Ubuntu 16.04 LTS, update to version 2.1.5+deb1+cvs20081104-13.1ubuntu0.16.04.1 or later. For eject versions before 2.1.5+deb1+cvs20081104-13.1ubuntu0.14.04.1 on Ubuntu 14.04 LTS, update to version 2.1.5+deb1+cvs20081104-13.1ubuntu0.14.04.1 or later. For eject versions before 2.1.5+deb1+cvs20081104-9ubuntu0.1 on Ubuntu 12.04 LTS, update to version 2.1.5+deb1+cvs20081104-9ubuntu0.1 or later. As a temporary workaround, consider restricting the use of the dmcrypt-get-device utility until a patch is available.