Sure, no problem, Martin. Thanks!
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to the bug report.
https://bugs.launchpad.net/bugs/830850
Title:
mount.ecrpytfs_private sets group owner of /etc/mtab to user's primary
group
To manage notif
This bug was fixed in the package ecryptfs-utils - 91-0ubuntu1
---
ecryptfs-utils (91-0ubuntu1) oneiric; urgency=low
[ Diego E. "Flameeyes" Pettenò ]
* configure.ac:
- fix reliance on nss-config, which hinders cross-compilation
[ Marc Deslauriers ]
* src/utils/mount.ecryp
I'm afraid we can't afford yet another respin, the release is today. But
as this was fixed in stables, I suppose it can also be fixed with an
update in oneiric. Moving milestone.
** Changed in: ecryptfs-utils (Ubuntu Oneiric)
Milestone: ubuntu-11.10-beta-1 => ubuntu-11.10-beta-2
--
You recei
** Also affects: ecryptfs-utils (Ubuntu Oneiric)
Importance: High
Assignee: Marc Deslauriers (mdeslaur)
Status: Fix Released
** Changed in: ecryptfs-utils (Ubuntu Oneiric)
Milestone: None => oneiric-updates
** Changed in: ecryptfs-utils (Ubuntu Oneiric)
Milestone: oneiric-u
Something is also creating /etc/mtab.fuselock with incorrect group. It
doesn't always happen simultaneously though as on my system I found that
/etc/mtab and /etc/mtab.fuselock had two different gropus (both
incorrect).
--
You received this bug notification because you are a member of Ubuntu
Bugs
** Visibility changed to: Public
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to the bug report.
https://bugs.launchpad.net/bugs/830850
Title:
mount.ecrpytfs_private sets group owner of /etc/mtab to user's primary
group
To manage notific
This bug was fixed in the package ecryptfs-utils - 87-0ubuntu1.2
---
ecryptfs-utils (87-0ubuntu1.2) natty-security; urgency=low
* SECURITY UPDATE: wrong mtab ownership and permissions (LP: #830850)
- debian/patches/CVE-2011-3145.patch: also set gid and umask before
updatin
Sigh. For the record, this issue existed prior to the recent
fixes...sorry for missing it. Additionally, this by itself doesn't seem
to be a vulnerability, since a mis-assigned group ID on mtab doesn't
actually allow the unprivileged user to cross any privilege boundaries.
But good catch, definit
Thanks for reporting this issue. We are working on a fix.
** Changed in: ecryptfs-utils (Ubuntu)
Assignee: (unassigned) => Marc Deslauriers (mdeslaur)
** CVE added: http://www.cve.mitre.org/cgi-
bin/cvename.cgi?name=2011-3145
--
You received this bug notification because you are a member
** Changed in: ecryptfs-utils (Ubuntu)
Status: New => Confirmed
** Changed in: ecryptfs-utils (Ubuntu)
Importance: Undecided => High
** Visibility changed to: Private
** This bug has been flagged as a security vulnerability
--
You received this bug notification because you are a memb
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/830850
Title:
mount.ecrpytfs_private sets group owner of /etc/mtab to user's primary
group
To manage notifications about this bug go to:
https://bugs.
11 matches
Mail list logo
