CVE-2011-1836

Publication date 9 August 2011

Last updated 24 July 2024

utils/ecryptfs-recover-private in ecryptfs-utils before 90 does not establish a subdirectory with safe permissions, which might allow local users to bypass intended access restrictions via standard filesystem operations during the recovery process.

Status

Show unmaintained releases

No maintained releases are affected by this CVE.

Package	Ubuntu Release	Status
ecryptfs-utils	11.04 natty	Fixed 87-0ubuntu1.1
	10.10 maverick	Not affected
	10.04 LTS lucid	Not affected
	8.04 LTS hardy	Not affected

How can I get the fixes?
What do statuses mean?

References

MITRE
NVD
Launchpad
Debian

Related Ubuntu Security Notices (USN)

USN-1188-1
eCryptfs vulnerabilities
9 August 2011

Other references

https://www.cve.org/CVERecord?id=CVE-2011-1836