-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Format: 1.8 Date: Wed, 04 Jan 2012 22:01:03 +0000 Source: ecryptfs-utils Binary: ecryptfs-utils ecryptfs-utils-dbg libecryptfs0 libecryptfs-dev Architecture: sparc Version: 83-4+squeeze1 Distribution: squeeze-security Urgency: low Maintainer: sparc Build Daemon (schroeder) Changed-By: Jonathan Wiltshire Description: ecryptfs-utils - ecryptfs cryptographic filesystem (utilities) ecryptfs-utils-dbg - ecryptfs cryptographic filesystem (utilities; debug) libecryptfs-dev - ecryptfs cryptographic filesystem (development) libecryptfs0 - ecryptfs cryptographic filesystem (library) Changes: ecryptfs-utils (83-4+squeeze1) stable-security; urgency=low . * Non-maintainer upload by the security team. * Various security fixes: - debian/patches/CVE-2011-1831,1832,1834.patch: chdir into mountpoint before checking permissions in src/utils/mount.ecryptfs_private.c. (CVE-2011-1831, CVE-2011-1832) - debian/patches/CVE-2011-1831,1832,1834.patch: modify mtab via a temp file first and make sure it succeeds before replacing the real mtab in src/utils/mount.ecryptfs_private.c. (CVE-2011-1834) - debian/patches/CVE-2011-1835.patch: make sure we don't copy into a user controlled directory in src/utils/ecryptfs-setup-private. (CVE-2011-1835) - debian/patches/CVE-2011-1837.patch: verify permissions with a file descriptor, and don't follow symlinks in src/utils/mount.ecryptfs_private.c. (CVE-2011-1837) - debian/patches/CVE-2011-3145.patch: also set gid and umask before updating mtab in src/utils/mount.ecryptfs_private.c. (CVE-2011-3145) Checksums-Sha1: 4282fb7ad172ef5585534488ebb862f9fbcceaaf 101306 ecryptfs-utils_83-4+squeeze1_sparc.deb d0b9f3cfc52d5c11740d967692d143688b57d222 148996 ecryptfs-utils-dbg_83-4+squeeze1_sparc.deb 5106ef19bf7d98b64b30e7067ee17d643ce8a4a4 64962 libecryptfs0_83-4+squeeze1_sparc.deb 21e86518fbd14db4b62b6bacd06a773213dec90d 57744 libecryptfs-dev_83-4+squeeze1_sparc.deb Checksums-Sha256: 82e96cd0795201fa1bb2d4963655e486cee7fe7a0801b541eaf58a273aa2af7e 101306 ecryptfs-utils_83-4+squeeze1_sparc.deb a1fcc8e104eb5481fae4e66a4cf38253f4812210a99ef717074f912e824d9878 148996 ecryptfs-utils-dbg_83-4+squeeze1_sparc.deb f718b4f472606f2c885e7828bf70e4b9c17350c2a16b3de97dd9699ce5f716ce 64962 libecryptfs0_83-4+squeeze1_sparc.deb 16d4c649a27da26045dc7161b801480a26ddc6289593953331734da6b5994a8f 57744 libecryptfs-dev_83-4+squeeze1_sparc.deb Files: 300af1ab65779ad3b58934a96e2f7e79 101306 misc optional ecryptfs-utils_83-4+squeeze1_sparc.deb 1d703bcf921b12adc0b4592a66235a5a 148996 debug extra ecryptfs-utils-dbg_83-4+squeeze1_sparc.deb 248f7a0e6dff350fb79ed274d0a98477 64962 libs optional libecryptfs0_83-4+squeeze1_sparc.deb d68971ba1b0cb8ab54a0b6b461e441d0 57744 libdevel optional libecryptfs-dev_83-4+squeeze1_sparc.deb -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.10 (GNU/Linux) iQIcBAEBCAAGBQJPCEkzAAoJEFJVSUQr9QGrv+EP/0d/UCEsVvf7fXmtw1hmrF7b 9T97xSpsLiC/J4NJJnO1IvMdzNJ2xtHIJ3spR35RRFK0In6yKNoPS2bKWPdTuVsO 6A3B7587chQuC3AORwywmeohHeUeorrCvE0XCs7kVd/d1gS47q7IvZTA4h/d2RE1 QsLfjn0Q7mXwtPaUIEqX36nR4Um2O4FAjxnhZqzG3OQcErCPX9XNmJciXWnOxs9Z l/8pHJFUi5HRmL8Zk/rNpcQFIbNApQK1LFLwJwkkeTgpHOJQeWzHktfrTyCsxZAG 7mMTveU68jEbm2kZkO5pHwxI/2JfSe89n18ig4qQ6rx2o999RAPA2EFEH9hzflsL Qo5blvrXRyS7jCItn+wG6y02C/Qx/1SBTp9XdaMVTe74/0dhd9RUo+pClWgZ8/y2 LOvW5mFy/wf4s4mdDi10kLRpw7xZLQZbZ0y8J+RXtevPLjS5XB1X2yo6MsDrbmqD 8RzpDAsLJbjoOgbNwDRYR7q7WcuDWUbKdEFfoIY/ArMTVoZVhlY4MawvqmQdJH0H mDjYP6Gw+kkpxIPzwFkw9HrqLlXthNmTqXwKQsQxHRXcrmLU10BAyDSdvqAtmdyL G2bjfCG7LLJF9RjGBse5oPkT0jpMCisniqiiR3SJy1U4VlYua88leWVNcrwgJRb/ Hk0JPTwhxnMOpv/GFJ7r =1Njj -----END PGP SIGNATURE-----