[ubuntu/yakkety-proposed] ecryptfs-utils 111-0ubuntu2 (Accepted)
Tyler Hicks
tyhicks at canonical.com
Fri Jul 15 00:20:12 UTC 2016
ecryptfs-utils (111-0ubuntu2) yakkety; urgency=medium
* SECURITY UPDATE: Information exposure via unencrypted swap partitions. The
swap partition was not configured to use encryption when GPT partitioning
was in use on NVMe and MMC drives.
- debian/patches/CVE-2016-6224.patch: Properly handle the formatting of
the path to swap partitions on NVMe and MMC drives so that they're
correctly marked as not to be automatically mounted by systemd. Based on
upstream patch from Jason Gerard DeRose. (LP: #1597154)
- debian/ecryptfs-utils.postinst: Fix any unencrypted GPT swap partitions
that have mistakenly remained marked as auto mount. This should only
modify the swap partitions on systems that ecryptfs-setup-swap has been
used on. (LP: #1447282, LP: #1597154)
- CVE-2016-6224
Date: Thu, 14 Jul 2016 18:48:53 -0500
Changed-By: Tyler Hicks <tyhicks at canonical.com>
Maintainer: Dustin Kirkland <kirkland at ubuntu.com>
https://launchpad.net/ubuntu/+source/ecryptfs-utils/111-0ubuntu2
-------------- next part --------------
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512
Format: 1.8
Date: Thu, 14 Jul 2016 18:48:53 -0500
Source: ecryptfs-utils
Binary: ecryptfs-utils ecryptfs-utils-dbg libecryptfs1 libecryptfs-dev python-ecryptfs
Architecture: source
Version: 111-0ubuntu2
Distribution: yakkety
Urgency: medium
Maintainer: Dustin Kirkland <kirkland at ubuntu.com>
Changed-By: Tyler Hicks <tyhicks at canonical.com>
Description:
ecryptfs-utils - ecryptfs cryptographic filesystem (utilities)
ecryptfs-utils-dbg - ecryptfs cryptographic filesystem (utilities; debug)
libecryptfs-dev - ecryptfs cryptographic filesystem (development)
libecryptfs1 - ecryptfs cryptographic filesystem (library)
python-ecryptfs - ecryptfs cryptographic filesystem (python)
Launchpad-Bugs-Fixed: 1447282 1597154
Changes:
ecryptfs-utils (111-0ubuntu2) yakkety; urgency=medium
.
* SECURITY UPDATE: Information exposure via unencrypted swap partitions. The
swap partition was not configured to use encryption when GPT partitioning
was in use on NVMe and MMC drives.
- debian/patches/CVE-2016-6224.patch: Properly handle the formatting of
the path to swap partitions on NVMe and MMC drives so that they're
correctly marked as not to be automatically mounted by systemd. Based on
upstream patch from Jason Gerard DeRose. (LP: #1597154)
- debian/ecryptfs-utils.postinst: Fix any unencrypted GPT swap partitions
that have mistakenly remained marked as auto mount. This should only
modify the swap partitions on systems that ecryptfs-setup-swap has been
used on. (LP: #1447282, LP: #1597154)
- CVE-2016-6224
Checksums-Sha1:
5cea18b3a4072aaefd712955072163507a2bc888 2335 ecryptfs-utils_111-0ubuntu2.dsc
ae76d7b0016c2c203e44eda5cf2f2c40824ebb23 31657 ecryptfs-utils_111-0ubuntu2.debian.tar.gz
Checksums-Sha256:
c0b2825c0bd66c67b1840b718184119e465576648bd70901f80a564abea7e03e 2335 ecryptfs-utils_111-0ubuntu2.dsc
b212e8792e6101e47db69f5bbc10a526b696f82ae1687fd86aba181e05cb5856 31657 ecryptfs-utils_111-0ubuntu2.debian.tar.gz
Files:
27e63673110b50fcb6c8c4308752831d 2335 misc optional ecryptfs-utils_111-0ubuntu2.dsc
c58359b686404c8b32569ad73942b880 31657 misc optional ecryptfs-utils_111-0ubuntu2.debian.tar.gz
Original-Maintainer: Daniel Baumann <daniel at debian.org>
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1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=L/q4
-----END PGP SIGNATURE-----
More information about the Yakkety-changes
mailing list