Package: ecryptfs-utils / 99-1+deb7u1

Metadata

Package Version Patches format
ecryptfs-utils 99-1+deb7u1 3.0 (quilt)

Patch series

view the series file
Patch File delta Description
CVE 2016 1572.patch | (download)

src/utils/mount.ecryptfs_private.c | 61 61 + 0 - 0 !
1 file changed, 61 insertions(+)

 [patch] mount.ecryptfs_private: validate mount destination fs type

Refuse to mount over non-standard filesystems. Mounting over
certain types filesystems is a red flag that the user is doing
something devious, such as mounting over the /proc/self symlink
target with malicious content in order to confuse programs that may
attempt to parse those files. (LP: #1530566)

https://launchpad.net/bugs/1530566