Source: ecryptfs-utils Version: 83-4+squeeze1 Severity: critical Tags: security
CVE-2011-1833 appears to be still present in ecryptfs-utils in squeeze. As I understand it, this allows users to mount block devices that they do not own. The fix apparently requires a new mount option in the filesystem itself, which will be added in linux-2.6 version 2.6.32-42. Ben. -- System Information: Debian Release: wheezy/sid APT prefers stable-updates APT policy: (500, 'stable-updates'), (500, 'proposed-updates'), (500, 'unstable'), (500, 'stable'), (1, 'experimental') Architecture: i386 (x86_64) Kernel: Linux 3.2.0-2-amd64 (SMP w/2 CPU cores) Locale: LANG=en_GB.utf8, LC_CTYPE=en_GB.utf8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash -- To UNSUBSCRIBE, email to debian-bugs-rc-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
