← Back

CVE-2011-1835

nvd nist
Published: Feb 15, 2014Modified: Apr 29, 2026

JSON object

Loading...
4.4
Vector
AV:L/AC:M/Au:N/C:P/I:P/A:P
Exploitability: 3.4 / Impact: 6.4
Source: NVD

Description

The encrypted private-directory setup process in utils/ecryptfs-setup-private in ecryptfs-utils before 90 does not properly ensure that the passphrase file is created, which might allow local users to bypass intended access restrictions at a certain time in the new-user creation steps.

Affected (31)

Ecryptfs
1 product
Ecryptfs Utils
Configuration A
31 vulnerable
Vulnerable SoftwareAffected Versions
Ecryptfs
Ecryptfs Utils
Up to 89
Ecryptfs Utils
Version 62
Ecryptfs Utils
Version 63
Ecryptfs Utils
Version 64
Ecryptfs Utils
Version 65
Ecryptfs Utils
Version 66
Ecryptfs Utils
Version 67
Ecryptfs Utils
Version 68
Ecryptfs Utils
Version 69
Ecryptfs Utils
Version 70
Ecryptfs Utils
Version 71
Ecryptfs Utils
Version 72
Ecryptfs Utils
Version 73
Ecryptfs Utils
Version 74
Ecryptfs Utils
Version 75
Ecryptfs Utils
Version 76
Ecryptfs Utils
Version 77
Ecryptfs Utils
Version 78
Ecryptfs Utils
Version 79
Ecryptfs Utils
Version 80
Ecryptfs Utils
Version 81
Ecryptfs Utils
Version 82
Ecryptfs Utils
Version 83
Ecryptfs Utils
Version 84
Ecryptfs Utils
Version 85
Ecryptfs Utils
Version 86
Ecryptfs Utils
Version 87
Ecryptfs
Ecryptfs Utils
Version 58
Ecryptfs Utils
Version 59
Ecryptfs Utils
Version 60
Ecryptfs Utils
Version 61

Related CWEs

CWE-255
CWE-255

References (8)

Source: security@ubuntu.com
Source: security@ubuntu.com
Source: security@ubuntu.com
Vendor Advisory
Source: security@ubuntu.com
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Vendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.