-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Format: 1.8 Date: Wed, 04 Jan 2012 22:01:03 +0000 Source: ecryptfs-utils Binary: ecryptfs-utils ecryptfs-utils-dbg libecryptfs0 libecryptfs-dev Architecture: mipsel Version: 83-4+squeeze1 Distribution: squeeze-security Urgency: low Maintainer: mipsel Build Daemon (rem) Changed-By: Jonathan Wiltshire Description: ecryptfs-utils - ecryptfs cryptographic filesystem (utilities) ecryptfs-utils-dbg - ecryptfs cryptographic filesystem (utilities; debug) libecryptfs-dev - ecryptfs cryptographic filesystem (development) libecryptfs0 - ecryptfs cryptographic filesystem (library) Changes: ecryptfs-utils (83-4+squeeze1) stable-security; urgency=low . * Non-maintainer upload by the security team. * Various security fixes: - debian/patches/CVE-2011-1831,1832,1834.patch: chdir into mountpoint before checking permissions in src/utils/mount.ecryptfs_private.c. (CVE-2011-1831, CVE-2011-1832) - debian/patches/CVE-2011-1831,1832,1834.patch: modify mtab via a temp file first and make sure it succeeds before replacing the real mtab in src/utils/mount.ecryptfs_private.c. (CVE-2011-1834) - debian/patches/CVE-2011-1835.patch: make sure we don't copy into a user controlled directory in src/utils/ecryptfs-setup-private. (CVE-2011-1835) - debian/patches/CVE-2011-1837.patch: verify permissions with a file descriptor, and don't follow symlinks in src/utils/mount.ecryptfs_private.c. (CVE-2011-1837) - debian/patches/CVE-2011-3145.patch: also set gid and umask before updating mtab in src/utils/mount.ecryptfs_private.c. (CVE-2011-3145) Checksums-Sha1: dc594af935c77a88beef7e84490bafbb629f71bb 102768 ecryptfs-utils_83-4+squeeze1_mipsel.deb c8a427c13d867a0f367b08d5594e6080408c79b4 162864 ecryptfs-utils-dbg_83-4+squeeze1_mipsel.deb 7becd0199a87c6553a8a43b0e1aa5033a2e99b25 65834 libecryptfs0_83-4+squeeze1_mipsel.deb 4a9d585154590099fee0af760107ac8e9091b2db 68014 libecryptfs-dev_83-4+squeeze1_mipsel.deb Checksums-Sha256: fd30186bce80ac1886529244be037d66b096f46acbdf2debdefd769ce6631c34 102768 ecryptfs-utils_83-4+squeeze1_mipsel.deb a44128139add3f4e95095fe9261017d1e9ee465e225faf4039ce82af85b74aef 162864 ecryptfs-utils-dbg_83-4+squeeze1_mipsel.deb 711199b05d4c22eb7b2ae5355dc8ef96b3a69893ca168ff2e5ee3ead38675c14 65834 libecryptfs0_83-4+squeeze1_mipsel.deb 87c61a3a21505602c50cc0f752269d8cdb0028d9d97e9c98100775ec603eed12 68014 libecryptfs-dev_83-4+squeeze1_mipsel.deb Files: 7eed9fc20f282e03d434dc3ad69547c5 102768 misc optional ecryptfs-utils_83-4+squeeze1_mipsel.deb 19ede9d45fa924299fb18ba16a4115cf 162864 debug extra ecryptfs-utils-dbg_83-4+squeeze1_mipsel.deb e00f9a758d2607e6c987f6c3bc44aed1 65834 libs optional libecryptfs0_83-4+squeeze1_mipsel.deb a70ed851e70ee65597906657d16b69fa 68014 libdevel optional libecryptfs-dev_83-4+squeeze1_mipsel.deb -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.10 (GNU/Linux) iQIcBAEBCAAGBQJPCEzDAAoJEAzzgj1nKIEuNPwQAKHT90P6LxRR6BJhjCJCEqC6 0NeWx1Ug7ZpoCbcqsHylNrlhH3cuXA9W0haAOqQBAW5YvaXdCEQ425KCo2fwBquo P+0HYPOoLBBeukja6Q8++2JehFtRFLEJ2QrqrXBgilEPOvBBTRiuWudRUo0cbidd 3OAI8VgimOuJw1ovr/B+wTnl3ZxazaxHVPnaCZIW41gXp9a57LC0zqL8F6f/cygT cb8Xl5PnvjReXyS9P76KqhwKVEq+CXBbHWoy9HWB/+2oQ42+d64/37wKcKPLXdkS wEKy3Hvoi1jA6PsofKT10g72tVSZOWk+ewJGWxBA2eYytf2jcl5X0g374c2dwT3L X2zjvcRwKdBkz79acaVY73tsBi8arx4fiou8Wj4nSyqgQDqQF1h9B69PPmU41qQU L8Pog3Ymit1UxEazM6KK23QG7/Bn43qsmUpcTZ68LbEiIbn43HWUDgvOOK+ofH0X 9d1jdvY4jKQtx2OGjKlQvPJN97LIa4Rywlu+Qbuf6KuEWWXlKCW6OTLWC4HI5VLY ElIN3TxSH6YkeNIx3zoWuTyeLB6kPHNFqdDssCWhBe0rz2Vh95DZFcKka5e7nrS/ MXiJvWZjVDee6NxF6LrLB0/3rXxuuV2uHFNRAaiMz4DE2KXlGUtUjGQubnoaAcjT 2veudQx2hmayrGXrIs+B =vJWe -----END PGP SIGNATURE-----