eCryptfs

CVEs related to bugs in eCryptfs

Open bugs

Bug	CVE(s)
Bug #1447282: Does not use encrypted swap when using GPT partitioning + encrypted home directory (ecryptfs)	CVE-2016-6224
eCryptfs	Fix committed by Dustin Kirkland 
Bug #1480532: ECB encryption of passphrase	CVE-2014-9687
eCryptfs	Confirmed (unassigned)
Bug #1530566: privilege escalation by mounting over /proc/$pid	CVE-2016-1572
eCryptfs	Fix committed by Tyler Hicks

Resolved bugs

Bug	CVE(s)
Bug #338914: Proper cipher support isn't checked at mount time	CVE-2012-0957 CVE-2012-4565
eCryptfs	Fix released, assigned to Tim Sally
Bug #345544: ecryptfs stores ram contents in plaintext in the container as padding	CVE-2009-0787
eCryptfs	Fix released, assigned to Tyler Hicks
Bug #358573: ecryptfs private directory randomly unmounts	CVE-2009-1296
eCryptfs	Fix released (unassigned)
Bug #371587: mount.ecryptfs takes up enormous amounts of memory when mounting	CVE-2009-1296
eCryptfs	Fix released (unassigned)
Bug #376486: vol_id is superseded by blkid	CVE-2009-1296
eCryptfs	Fix released, assigned to Dustin Kirkland 
Bug #387073: BUG: unable to handle kernel NULL pointer dereference at 0000000000000228	CVE-2009-2908
eCryptfs	Fix released, assigned to Tyler Hicks
Bug #400443: ecryptfs_read_lower errors	CVE-2011-4347 CVE-2012-0879
eCryptfs	Fix released, assigned to Tyler Hicks
Bug #401810: Check max buffer lengths when parsing metadata packets	CVE-2009-2406
eCryptfs	Fix released, assigned to Tyler Hicks
Bug #451368: ecryptfs_truncate should not call vmtruncate on lower inode	CVE-2011-4347 CVE-2012-0879
eCryptfs	Fix released, assigned to Tyler Hicks
Bug #509180: ecryptfs sometimes seems to add trailing garbage to encrypted files	CVE-2010-4076 CVE-2010-4077 CVE-2010-4251 CVE-2010-4805 CVE-2011-1020 CVE-2011-1493 CVE-2011-1577 CVE-2011-1770 CVE-2011-1833 CVE-2011-2484 CVE-2011-2492 CVE-2011-2689 CVE-2011-2699 CVE-2011-2918 CVE-2011-4347 CVE-2012-0879
eCryptfs	Fix released, assigned to Tyler Hicks
Bug #561129: Existing eCryptfs inodes are not evicted when they're the target of a rename()/mv	CVE-2012-3520
eCryptfs	Fix released, assigned to Tyler Hicks
Bug #719691: ecryptfs returns EINVAL rather than EISDIR on read() on directory	CVE-2011-4347 CVE-2012-0879
eCryptfs	Fix released, assigned to Tyler Hicks
Bug #723518: inotify DELETE_SELF notification disappears on ecryptfs mount	CVE-2011-4347 CVE-2012-0879
eCryptfs	Fix released, assigned to Tyler Hicks
Bug #732614: pam_ecryptfs doesn't drop gid when using user's files	CVE-2012-3409
eCryptfs	Fix released, assigned to Tyler Hicks
Bug #732628: TOCTOU in mount.ecryptfs_private	CVE-2010-3296 CVE-2010-3297 CVE-2010-3858 CVE-2010-3859 CVE-2010-3880 CVE-2010-4073 CVE-2010-4076 CVE-2010-4077 CVE-2010-4080 CVE-2010-4081 CVE-2010-4082 CVE-2010-4083 CVE-2010-4157 CVE-2010-4158 CVE-2010-4162 CVE-2010-4163 CVE-2010-4169 CVE-2010-4175 CVE-2010-4242 CVE-2010-4243 CVE-2010-4248 CVE-2010-4251 CVE-2010-4256 CVE-2010-4565 CVE-2010-4649 CVE-2010-4805 CVE-2011-0463 CVE-2011-0695 CVE-2011-0711 CVE-2011-0726 CVE-2011-1010 CVE-2011-1012 CVE-2011-1013 CVE-2011-1016 CVE-2011-1017 CVE-2011-1019 CVE-2011-1020 CVE-2011-1078 CVE-2011-1079 CVE-2011-1080 CVE-2011-1082 CVE-2011-1090 CVE-2011-1093 CVE-2011-1160 CVE-2011-1163 CVE-2011-1169 CVE-2011-1170 CVE-2011-1171 CVE-2011-1172 CVE-2011-1173 CVE-2011-1180 CVE-2011-1478 CVE-2011-1493 CVE-2011-1494 CVE-2011-1576 CVE-2011-1577 CVE-2011-1581 CVE-2011-1598 CVE-2011-1748 CVE-2011-1770 CVE-2011-1776 CVE-2011-1831 CVE-2011-1832 CVE-2011-1833 CVE-2011-1834 CVE-2011-1835 CVE-2011-1836 CVE-2011-1837 CVE-2011-2213 CVE-2011-2484 CVE-2011-2492 CVE-2011-2493 CVE-2011-2494 CVE-2011-2495 CVE-2011-2497 CVE-2011-2534 CVE-2011-2689 CVE-2011-2695 CVE-2011-2699 CVE-2011-2700 CVE-2011-2723 CVE-2011-2918 CVE-2011-2928 CVE-2011-3191
eCryptfs	Fix released, assigned to Dustin Kirkland 
Bug #813146: kernel panic when running Python test suite on ecryptfs	CVE-2011-2203 CVE-2011-4077 CVE-2011-4132
eCryptfs	Fix released, assigned to Tyler Hicks
Bug #870326: ecryptfs_writepage: Error	CVE-2011-2203 CVE-2011-4077 CVE-2011-4132
eCryptfs	Fix released, assigned to Tyler Hicks
Bug #885744: pathconf() does not reflect reality	CVE-2011-4347 CVE-2012-0045 CVE-2012-1097 CVE-2012-1146
eCryptfs	Fix released, assigned to Tyler Hicks
Bug #911507: eCryptfs should initialize existing empty files at open()	CVE-2012-2372 CVE-2012-2745 CVE-2012-3412 CVE-2012-3430 CVE-2012-3511
eCryptfs	Fix released, assigned to Tyler Hicks
Bug #926292: automake distdir.test fails because of an EPERM error	CVE-2011-3347 CVE-2011-4347
eCryptfs	Fix released, assigned to Tyler Hicks
Bug #994247: BUG() when opened miscdev fd's are used after being inherited/passed	CVE-2012-0044 CVE-2012-2372 CVE-2012-3400
eCryptfs	Fix released, assigned to Tyler Hicks
Bug #1009207: Default ACL masks not working properly in eCryptfs	CVE-2012-0044 CVE-2012-2372 CVE-2012-3400
eCryptfs	Fix released, assigned to Tyler Hicks
Bug #1047261: ecryptfs_encrypt_page: Error attempting to write lower page (regression)	CVE-2012-3520
eCryptfs	Fix released, assigned to Tyler Hicks
Bug #1147348: Capabilities stored but not usable	CVE-2012-3409
eCryptfs	Invalid (unassigned)
Bug #1243636: ecryptfs corrupts files over 4GB size on i686	CVE-2013-4299
eCryptfs	Fix released, assigned to Tyler Hicks