-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Format: 1.8 Date: Wed, 04 Jan 2012 22:01:03 +0000 Source: ecryptfs-utils Binary: ecryptfs-utils ecryptfs-utils-dbg libecryptfs0 libecryptfs-dev Architecture: mips Version: 83-4+squeeze1 Distribution: squeeze-security Urgency: low Maintainer: Debian Build Daemon Changed-By: Jonathan Wiltshire Description: ecryptfs-utils - ecryptfs cryptographic filesystem (utilities) ecryptfs-utils-dbg - ecryptfs cryptographic filesystem (utilities; debug) libecryptfs-dev - ecryptfs cryptographic filesystem (development) libecryptfs0 - ecryptfs cryptographic filesystem (library) Changes: ecryptfs-utils (83-4+squeeze1) stable-security; urgency=low . * Non-maintainer upload by the security team. * Various security fixes: - debian/patches/CVE-2011-1831,1832,1834.patch: chdir into mountpoint before checking permissions in src/utils/mount.ecryptfs_private.c. (CVE-2011-1831, CVE-2011-1832) - debian/patches/CVE-2011-1831,1832,1834.patch: modify mtab via a temp file first and make sure it succeeds before replacing the real mtab in src/utils/mount.ecryptfs_private.c. (CVE-2011-1834) - debian/patches/CVE-2011-1835.patch: make sure we don't copy into a user controlled directory in src/utils/ecryptfs-setup-private. (CVE-2011-1835) - debian/patches/CVE-2011-1837.patch: verify permissions with a file descriptor, and don't follow symlinks in src/utils/mount.ecryptfs_private.c. (CVE-2011-1837) - debian/patches/CVE-2011-3145.patch: also set gid and umask before updating mtab in src/utils/mount.ecryptfs_private.c. (CVE-2011-3145) Checksums-Sha1: e205f79dbe5024dd622f0feb848a8c89007325a0 101284 ecryptfs-utils_83-4+squeeze1_mips.deb 4848132731885991e429ff36eb1751461f77bb40 165026 ecryptfs-utils-dbg_83-4+squeeze1_mips.deb a429cadea56936856d69b9643ce2e86b6983fbbc 65768 libecryptfs0_83-4+squeeze1_mips.deb bec2198d919d78f03af11e4afcc3a2ba4d43a57b 67164 libecryptfs-dev_83-4+squeeze1_mips.deb Checksums-Sha256: c8ba9ad7a805a37bf1c9f9965cd1b3ba64980d7744ceae77c9a9722f64283e73 101284 ecryptfs-utils_83-4+squeeze1_mips.deb 0afd2d260341597df48cfae34e4f2b4ab4f5e07b643f1a862eb53a06aec9e440 165026 ecryptfs-utils-dbg_83-4+squeeze1_mips.deb 5dd43a33c8c1b3ee1b618f489cf32b04020a74a6005874d5ca467d7354830137 65768 libecryptfs0_83-4+squeeze1_mips.deb 67a40303f70214e1d8ff76b484ee0c0d0a055f62446b5ddd57305ef07c67cea1 67164 libecryptfs-dev_83-4+squeeze1_mips.deb Files: d77618bde2bfe000fe00ec4bff47caa8 101284 misc optional ecryptfs-utils_83-4+squeeze1_mips.deb ceb6e606e880c5983ae42c4aad708916 165026 debug extra ecryptfs-utils-dbg_83-4+squeeze1_mips.deb 9c9469d5328e0920289c4c55b53c1745 65768 libs optional libecryptfs0_83-4+squeeze1_mips.deb 0b328fe8df9c6ff543abf4c115d6dbfb 67164 libdevel optional libecryptfs-dev_83-4+squeeze1_mips.deb -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.10 (GNU/Linux) iQIcBAEBCAAGBQJPCEqMAAoJEKAUSqXS1Z2a/SIP/RhTVTrpoL0cjAUMgSY+cf1w rI9wCUky69WqwjR9CJOs8uN67HFsb+5NJRbhtdsYylQlNfDaaVIxHjFo7pk9cfYs wKc8cdGa8KSdT/OOnVAwlxXRJNyXMCnubC6sb868If5zjzM1VtOo5/8oiCHocztv ohumUvQ2ku5rCD5qr6Z+cpdTUUd4jSOe8F0avworYVPubOPQNqnWF6mrxZY8vUBn 6u7CSuAn3AKgMwnMq8aGclU6+a7bjYk020Emo81tRSK8rJWsbUvTmTIPDdOo3U/M qNtIPoEQPaJuQMeZJzaVq9aJ0IW8BOlFJViVgeNfhHlE3nK13z6Nm9UpVMA6YGV7 TmXRmQfj2BJwxHJPD6rqmZ6PiAv00gyJMH6txtjqTRkF8u5YPFRMS49Gd/F1lI5e 9WqCTGOutfTLVDYAVqhPL2XEsLaIbZJE6HzRuU3ut3ILypHq7cJww2MVEr6EPgbl S0K6+wubkijntGehEa8NwpUsiJErVs6izcawyRIEXsYjCTnE3Uy6pX/TTzhDVtzy qyZGWjUGKdvoGDSHF7bV0Z0viIiToJjQTpv5VlZLQsed3hmu8nLi09lgTEnDMOoT x501pRz++DwCSvdLUF2iCWi49QBN7V94gmZvIXAQ4bXM8zh7qxcfcebHlGuvz0nR Sw2cvvkHyGkPhBLSCalc =F5sC -----END PGP SIGNATURE-----