Vulnerabilities for Fscrypt (...) - CXSECURITY.COM

Vulnerabilities for 'Fscrypt'

2022-02-25

CVE-2022-25326

CWE-400

fscrypt through v0.3.2 creates a world-writable directory by default when setting up a filesystem, allowing unprivileged users to exhaust filesystem space. We recommend upgrading to fscrypt 0.3.3 or above and adjusting the permissions on existing fscrypt metadata directories where applicable.

2018-08-23

CVE-2018-6558

CWE-noinfo

The pam_fscrypt module in fscrypt before 0.2.4 may incorrectly restore primary and supplementary group IDs to the values associated with the root user, which allows attackers to gain privileges via a successful login through certain applications that use Linux-PAM (aka pam).

>>> Vendor: Google 95 Products

Mini search appliance

Search appliance

Custom search engine

Google sketchup

App engine python sdk

Cr-48 chromebook

Android sdk tools

Google authenticator

Search appliance software

Android debug bridge

Android sdk platform tools

Android browser

Calendar events

Play services sdk

Google i/o 2017

News and weather

Chromecast firmware

Kubernetes engine

Nexus 7 firmware

Nexus 9 firmware

Cloud messaging notification

Nest cam iq indoor firmware

Closure library

Chrome-launcher

Secret manager provider for secret store csi driver

Exposure notifications verification server

Cloud iot device sdk for embedded c

Exposure notification verification server

Google-protobuf

Protobuf-kotlin

Oauth client library for java

Copyright 2024, cxsecurity.com