[El-errata] ELSA-2011-1241 Moderate: Oracle Linux 6 ecryptfs-utils security update
Errata Announcements for Oracle Linux
el-errata at oss.oracle.com
Thu Sep 1 11:19:44 PDT 2011
Oracle Linux Security Advisory ELSA-2011-1241
https://rhn.redhat.com/errata/RHSA-2011-1241.html
The following updated rpms for Oracle Linux 6 have been uploaded to the
Unbreakable Linux Network:
i386:
ecryptfs-utils-82-6.el6_1.3.i686.rpm
ecryptfs-utils-devel-82-6.el6_1.3.i686.rpm
ecryptfs-utils-python-82-6.el6_1.3.i686.rpm
x86_64:
ecryptfs-utils-82-6.el6_1.3.i686.rpm
ecryptfs-utils-82-6.el6_1.3.x86_64.rpm
ecryptfs-utils-devel-82-6.el6_1.3.i686.rpm
ecryptfs-utils-devel-82-6.el6_1.3.x86_64.rpm
ecryptfs-utils-python-82-6.el6_1.3.x86_64.rpm
SRPMS:
http://oss.oracle.com/ol6/SRPMS-updates/ecryptfs-utils-82-6.el6_1.3.src.rpm
Description of changes:
[82-6.3]
- do not forget to set the group id in mount.ecryptfs_private
[82-6.2]
- fix regression in ecryptfs-setup-private
[82-6.1]
- security fixes:
- privilege escalation via mountpoint race conditions (CVE-2011-1831,
CVE-2011-1832)
- race condition when checking source during mount (CVE-2011-1833)
- mtab corruption via improper handling (CVE-2011-1834)
- key poisoning via insecure temp directory handling (CVE-2011-1835)
- arbitrary file overwrite via lock counter race (CVE-2011-1837)
More information about the El-errata
mailing list