Your submission was sent successfully! Close

CVE-2012-3409

Published: 20 December 2019

ecryptfs-utils: suid helper does not restrict mounting filesystems with nosuid,nodev which creates a possible privilege escalation

Priority

Low

CVSS 3 base score: 7.8

Status

Package Release Status
ecryptfs-utils
Launchpad, Ubuntu, Debian
Upstream
Released (99)
Ubuntu 21.04 (Hirsute Hippo) Not vulnerable

Ubuntu 20.04 LTS (Focal Fossa) Not vulnerable

Ubuntu 18.04 LTS (Bionic Beaver) Not vulnerable

Ubuntu 16.04 ESM (Xenial Xerus) Not vulnerable

Ubuntu 14.04 ESM (Trusty Tahr) Not vulnerable
(104-0ubuntu1.14.04.4)
Patches:
Upstream: https://bazaar.launchpad.net/~ecryptfs/ecryptfs/trunk/revision/705 (nosuid)
Upstream: https://bazaar.launchpad.net/~ecryptfs/ecryptfs/trunk/revision/708 (nodev)