RSS   Vulnerabilities for 'Mount.ecrpytfs private'   RSS

2019-04-22
 
CVE-2011-3145

CWE-254
 

 
When mount.ecrpytfs_private before version 87-0ubuntu1.2 calls setreuid() it doesn't also set the effective group id. So when it creates the new version, mtab.tmp, it's created with the group id of the user running mount.ecryptfs_private.

 


Copyright 2024, cxsecurity.com

 

Back to Top