-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Format: 1.8 Date: Wed, 04 Jan 2012 22:01:03 +0000 Source: ecryptfs-utils Binary: ecryptfs-utils ecryptfs-utils-dbg libecryptfs0 libecryptfs-dev Architecture: powerpc Version: 83-4+squeeze1 Distribution: squeeze-security Urgency: low Maintainer: powerpc Build Daemon (porpora) Changed-By: Jonathan Wiltshire Description: ecryptfs-utils - ecryptfs cryptographic filesystem (utilities) ecryptfs-utils-dbg - ecryptfs cryptographic filesystem (utilities; debug) libecryptfs-dev - ecryptfs cryptographic filesystem (development) libecryptfs0 - ecryptfs cryptographic filesystem (library) Changes: ecryptfs-utils (83-4+squeeze1) stable-security; urgency=low . * Non-maintainer upload by the security team. * Various security fixes: - debian/patches/CVE-2011-1831,1832,1834.patch: chdir into mountpoint before checking permissions in src/utils/mount.ecryptfs_private.c. (CVE-2011-1831, CVE-2011-1832) - debian/patches/CVE-2011-1831,1832,1834.patch: modify mtab via a temp file first and make sure it succeeds before replacing the real mtab in src/utils/mount.ecryptfs_private.c. (CVE-2011-1834) - debian/patches/CVE-2011-1835.patch: make sure we don't copy into a user controlled directory in src/utils/ecryptfs-setup-private. (CVE-2011-1835) - debian/patches/CVE-2011-1837.patch: verify permissions with a file descriptor, and don't follow symlinks in src/utils/mount.ecryptfs_private.c. (CVE-2011-1837) - debian/patches/CVE-2011-3145.patch: also set gid and umask before updating mtab in src/utils/mount.ecryptfs_private.c. (CVE-2011-3145) Checksums-Sha1: b933fa23f49adc19ae397af349fe10ff4d71b85a 102530 ecryptfs-utils_83-4+squeeze1_powerpc.deb f0fac4ffb1926a221b0f590706a8480fcfd0c1ac 165610 ecryptfs-utils-dbg_83-4+squeeze1_powerpc.deb 74db6d0f4012bc7d73e095bfcf769e1193b421f1 69546 libecryptfs0_83-4+squeeze1_powerpc.deb 7f2d2074b4a218a989ad320064f7173e0197d680 62010 libecryptfs-dev_83-4+squeeze1_powerpc.deb Checksums-Sha256: 91c15f2b1e7713ca764b2c2e5bf5bfe0f69c93219c6a3a1a782148dc79f5afdd 102530 ecryptfs-utils_83-4+squeeze1_powerpc.deb 7bf81d1c87d22826e181a4767ed6dfa996020008b2ac1ee045d869216054b4f5 165610 ecryptfs-utils-dbg_83-4+squeeze1_powerpc.deb 45d2c41ca0d4fdff72bbf27778d62089763d5466eaca58bea75ff6964d37386f 69546 libecryptfs0_83-4+squeeze1_powerpc.deb 23d14278ca2c120332d1f0da120e7125c73dabf22eb8a9cbd4280fe5b58a7f67 62010 libecryptfs-dev_83-4+squeeze1_powerpc.deb Files: 2c19a857dbb81fd9d6fd45587e4cf747 102530 misc optional ecryptfs-utils_83-4+squeeze1_powerpc.deb fee12cf938f3e1fac6a5c592c0a3631d 165610 debug extra ecryptfs-utils-dbg_83-4+squeeze1_powerpc.deb be75ba76f5807158aa79c7ad65608b7b 69546 libs optional libecryptfs0_83-4+squeeze1_powerpc.deb 7ff6de38f221578c6cda528ccec244d3 62010 libdevel optional libecryptfs-dev_83-4+squeeze1_powerpc.deb -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.10 (GNU/Linux) iQIcBAEBCAAGBQJPCEXBAAoJELzJGFiM510FRSwQAK2unhE70muDDHB8XhIbTyC3 TEP4ibQqGol/Kbd7/5fWRSkBaG+mCKM+Gtf+Rjde69eMMkA4RUejJTSSnxzuMvuG kDiDBlDYREfS1EE7z4owLE/pYU0yLeaynh4YYTTxvJbFXDfUSBt9L+bcTdWDMepb iFt6LG825dIWqtxN1Z9pHlfZpv2WsOGBNBlY5N9yopSH6iphcV1+aAnlglgojS3j ko1D0T+VO/kliCHXAZyXX82IqpT8Io1BC0c4SklWHYF0/JsXBGghuQdOGcT9cj4N RJUHZUBGpenYNmRC/Lp58F/OSy8wXXPcneO4en/+2GKWdSVcUWqDH89MRtoqn0og ZfDmaex9155Pgp1ZD3oloYBl/GGjXbCVisGham9FfZZwgHn6It1lvYQI3WqzHxrZ 3kKluxW1yUvo7zrysqjQjT1FAL8p04QF3Nxvbz/DgQdWHWOJBI2rAuG23YtFmtiv w8F6uyQjiWbXJHgjjvVIbCJv2EvyUj60F422jkq03XGZ5sav8wmI1PvrjMUtxVYM nOfw5hVdWlDXJMQL5Mzc5C7khleQzMDGuCwxf1AOJcgtQIli5mtwyEsNX5LO+k7n VI/J1lbugfplYMV62iljyw7dEjB32vpzBe7xCt59UwS2jmEDkQAvOW/UMXDHpRa3 s4Fb9tcQb09lRboLNoTN =kPTT -----END PGP SIGNATURE-----