[ubuntu/xenial-proposed] ecryptfs-utils 109-0ubuntu1 (Accepted)

Dustin Kirkland kirkland at ubuntu.com
Fri Jan 22 16:09:14 UTC 2016 

ecryptfs-utils (109-0ubuntu1) xenial; urgency=medium

  [ Maikel ]
  * doc/manpage/ecryptfs-migrate-home.8: Fix typos in man page (LP: #1518787)

  [ Kylie McClain ]
  * src/utils/mount.ecryptfs.c, src/utils/mount.ecryptfs_private.c: Fix build
    issues on musl libc (LP: #1514625)

  [ Colin Ian King ]
  * src/daemon/main.c:
    - Static analysis with Clang's scan-build shows that we can potentially
      overflow the input buffer if the input is equal or more than the buffer
      size.  Need to guard against this by:
      1. Only reading in input_size - 1  chars
      2. Checking earlier on to see if input_size is value to insure that we
         read in at least 1 char

  [ Tyler Hicks ]
  * src/utils/mount.ecryptfs_private.c:
    - Refuse to mount over non-standard filesystems. Mounting over
      certain types filesystems is a red flag that the user is doing
      something devious, such as mounting over the /proc/self symlink
      target with malicious content in order to confuse programs that may
      attempt to parse those files. (LP: #1530566)

  [ Dustin Kirkland ]
  * xenial

Date: Fri, 22 Jan 2016 10:05:35 -0600
Changed-By: Dustin Kirkland <kirkland at ubuntu.com>
https://launchpad.net/ubuntu/+source/ecryptfs-utils/109-0ubuntu1
-------------- next part --------------
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Fri, 22 Jan 2016 10:05:35 -0600
Source: ecryptfs-utils
Binary: ecryptfs-utils ecryptfs-utils-dbg libecryptfs1 libecryptfs-dev python-ecryptfs
Architecture: source
Version: 109-0ubuntu1
Distribution: xenial
Urgency: medium
Maintainer: Dustin Kirkland <kirkland at ubuntu.com>
Changed-By: Dustin Kirkland <kirkland at ubuntu.com>
Description:
 ecryptfs-utils - ecryptfs cryptographic filesystem (utilities)
 ecryptfs-utils-dbg - ecryptfs cryptographic filesystem (utilities; debug)
 libecryptfs-dev - ecryptfs cryptographic filesystem (development)
 libecryptfs1 - ecryptfs cryptographic filesystem (library)
 python-ecryptfs - ecryptfs cryptographic filesystem (python)
Launchpad-Bugs-Fixed: 1514625 1518787 1530566
Changes:
 ecryptfs-utils (109-0ubuntu1) xenial; urgency=medium
 .
   [ Maikel ]
   * doc/manpage/ecryptfs-migrate-home.8: Fix typos in man page (LP: #1518787)
 .
   [ Kylie McClain ]
   * src/utils/mount.ecryptfs.c, src/utils/mount.ecryptfs_private.c: Fix build
     issues on musl libc (LP: #1514625)
 .
   [ Colin Ian King ]
   * src/daemon/main.c:
     - Static analysis with Clang's scan-build shows that we can potentially
       overflow the input buffer if the input is equal or more than the buffer
       size.  Need to guard against this by:
       1. Only reading in input_size - 1  chars
       2. Checking earlier on to see if input_size is value to insure that we
          read in at least 1 char
 .
   [ Tyler Hicks ]
   * src/utils/mount.ecryptfs_private.c:
     - Refuse to mount over non-standard filesystems. Mounting over
       certain types filesystems is a red flag that the user is doing
       something devious, such as mounting over the /proc/self symlink
       target with malicious content in order to confuse programs that may
       attempt to parse those files. (LP: #1530566)
 .
   [ Dustin Kirkland ]
   * xenial
Checksums-Sha1:
 945382888b461010c7995c13bfceeb52801c7b7c 2352 ecryptfs-utils_109-0ubuntu1.dsc
 2c399cc684d1a28d4f65c961496d138625ac9fe5 663044 ecryptfs-utils_109.orig.tar.gz
 3d3274edb649c7ddf772827b8720881ca973494a 29944 ecryptfs-utils_109-0ubuntu1.debian.tar.gz
Checksums-Sha256:
 b16e7bd956fcb1e1243fe36c844068e38e09afac3e19f9d0a0029d32e49be4c1 2352 ecryptfs-utils_109-0ubuntu1.dsc
 78ea4c3beac85105520bb019a0a9a9d3eae624fb495c890d0428cce311d8f56c 663044 ecryptfs-utils_109.orig.tar.gz
 91c96b4cd31a915e9ce340a8b83070e9aa87256cc48ae39b1790e39e972d031f 29944 ecryptfs-utils_109-0ubuntu1.debian.tar.gz
Files:
 b5000e10fb775f522b551260e3ec1731 2352 misc optional ecryptfs-utils_109-0ubuntu1.dsc
 8e33f096c8cb8288f9c29a9936cd0d28 663044 misc optional ecryptfs-utils_109.orig.tar.gz
 b426f1321d423b65acf6eacc743d3765 29944 misc optional ecryptfs-utils_109-0ubuntu1.debian.tar.gz
Original-Maintainer: Daniel Baumann <daniel at debian.org>

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1
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=c0hd
-----END PGP SIGNATURE-----

More information about the Xenial-changes mailing list