Action not permitted
Modal body text goes here.
Modal Title
Modal Body
CVE-2015-8946 (GCVE-0-2015-8946)
Vulnerability from cvelistv5 – Published: 2016-07-22 14:00 – Updated: 2024-08-06 08:36
VLAI
EPSS
Summary
ecryptfs-setup-swap in eCryptfs before 111 does not prevent the unencrypted swap partition from activating during boot when using GPT partitioning and certain versions of systemd, which allows local users to obtain sensitive information via unspecified vectors.
Severity
No CVSS data available.
CWE
- n/a
Assigner
References
5 references
| URL | Tags |
|---|---|
| http://www.openwall.com/lists/oss-security/2016/07/14/3 | mailing-listx_refsource_MLIST |
| http://www.openwall.com/lists/oss-security/2016/07/13/2 | mailing-listx_refsource_MLIST |
| https://bazaar.launchpad.net/~ecryptfs/ecryptfs/t… | x_refsource_CONFIRM |
| https://bugs.launchpad.net/ubuntu/+source/ecryptf… | x_refsource_CONFIRM |
| http://www.ubuntu.com/usn/USN-3032-1 | vendor-advisoryx_refsource_UBUNTU |
Date Public
2015-08-04 00:00
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-06T08:36:30.716Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"name": "[oss-security] 20160714 Re: CVE Requests: Information exposure caused by ecryptfs-setup-swap failures",
"tags": [
"mailing-list",
"x_refsource_MLIST",
"x_transferred"
],
"url": "http://www.openwall.com/lists/oss-security/2016/07/14/3"
},
{
"name": "[oss-security] 20160713 CVE Requests: Information exposure caused by ecryptfs-setup-swap failures",
"tags": [
"mailing-list",
"x_refsource_MLIST",
"x_transferred"
],
"url": "http://www.openwall.com/lists/oss-security/2016/07/13/2"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "https://bazaar.launchpad.net/~ecryptfs/ecryptfs/trunk/revision/857"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "https://bugs.launchpad.net/ubuntu/+source/ecryptfs-utils/+bug/1447282"
},
{
"name": "USN-3032-1",
"tags": [
"vendor-advisory",
"x_refsource_UBUNTU",
"x_transferred"
],
"url": "http://www.ubuntu.com/usn/USN-3032-1"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "n/a",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "n/a"
}
]
}
],
"datePublic": "2015-08-04T00:00:00.000Z",
"descriptions": [
{
"lang": "en",
"value": "ecryptfs-setup-swap in eCryptfs before 111 does not prevent the unencrypted swap partition from activating during boot when using GPT partitioning and certain versions of systemd, which allows local users to obtain sensitive information via unspecified vectors."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "n/a",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2016-07-22T12:57:01.000Z",
"orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"shortName": "mitre"
},
"references": [
{
"name": "[oss-security] 20160714 Re: CVE Requests: Information exposure caused by ecryptfs-setup-swap failures",
"tags": [
"mailing-list",
"x_refsource_MLIST"
],
"url": "http://www.openwall.com/lists/oss-security/2016/07/14/3"
},
{
"name": "[oss-security] 20160713 CVE Requests: Information exposure caused by ecryptfs-setup-swap failures",
"tags": [
"mailing-list",
"x_refsource_MLIST"
],
"url": "http://www.openwall.com/lists/oss-security/2016/07/13/2"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "https://bazaar.launchpad.net/~ecryptfs/ecryptfs/trunk/revision/857"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "https://bugs.launchpad.net/ubuntu/+source/ecryptfs-utils/+bug/1447282"
},
{
"name": "USN-3032-1",
"tags": [
"vendor-advisory",
"x_refsource_UBUNTU"
],
"url": "http://www.ubuntu.com/usn/USN-3032-1"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2015-8946",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "ecryptfs-setup-swap in eCryptfs before 111 does not prevent the unencrypted swap partition from activating during boot when using GPT partitioning and certain versions of systemd, which allows local users to obtain sensitive information via unspecified vectors."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "[oss-security] 20160714 Re: CVE Requests: Information exposure caused by ecryptfs-setup-swap failures",
"refsource": "MLIST",
"url": "http://www.openwall.com/lists/oss-security/2016/07/14/3"
},
{
"name": "[oss-security] 20160713 CVE Requests: Information exposure caused by ecryptfs-setup-swap failures",
"refsource": "MLIST",
"url": "http://www.openwall.com/lists/oss-security/2016/07/13/2"
},
{
"name": "https://bazaar.launchpad.net/~ecryptfs/ecryptfs/trunk/revision/857",
"refsource": "CONFIRM",
"url": "https://bazaar.launchpad.net/~ecryptfs/ecryptfs/trunk/revision/857"
},
{
"name": "https://bugs.launchpad.net/ubuntu/+source/ecryptfs-utils/+bug/1447282",
"refsource": "CONFIRM",
"url": "https://bugs.launchpad.net/ubuntu/+source/ecryptfs-utils/+bug/1447282"
},
{
"name": "USN-3032-1",
"refsource": "UBUNTU",
"url": "http://www.ubuntu.com/usn/USN-3032-1"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"assignerShortName": "mitre",
"cveId": "CVE-2015-8946",
"datePublished": "2016-07-22T14:00:00.000Z",
"dateReserved": "2016-07-14T00:00:00.000Z",
"dateUpdated": "2024-08-06T08:36:30.716Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1",
"vulnerability-lookup:meta": {
"epss": {
"cve": "CVE-2015-8946",
"date": "2026-05-25",
"epss": "0.00124",
"percentile": "0.31047"
},
"fkie_nvd": {
"configurations": "[{\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:canonical:ubuntu_linux:15.10:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"E88A537F-F4D0-46B9-9E37-965233C2A355\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:*\", \"matchCriteriaId\": \"F7016A2A-8365-4F1A-89A2-7A19F2BCAE5B\"}]}]}, {\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:ecryptfs:ecryptfs-utils:*:*:*:*:*:*:*:*\", \"versionEndIncluding\": \"110\", \"matchCriteriaId\": \"76E0F5E8-3299-416E-8931-D7F9F68CD4D0\"}]}]}]",
"descriptions": "[{\"lang\": \"en\", \"value\": \"ecryptfs-setup-swap in eCryptfs before 111 does not prevent the unencrypted swap partition from activating during boot when using GPT partitioning and certain versions of systemd, which allows local users to obtain sensitive information via unspecified vectors.\"}, {\"lang\": \"es\", \"value\": \"ecryptfs-setup-swap en eCryptfs en versiones anteriores a 111 no impide la activaci\\u00f3n de la partici\\u00f3n de intercambio sin cifrar durante el inicio cuando se utiliza el particionamiento GPT y ciertas versiones de systemd, lo que permite a usuarios locales obtener informaci\\u00f3n sensible a trav\\u00e9s de vectores no especificados.\"}]",
"id": "CVE-2015-8946",
"lastModified": "2024-11-21T02:39:30.743",
"metrics": "{\"cvssMetricV30\": [{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"cvssData\": {\"version\": \"3.0\", \"vectorString\": \"CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N\", \"baseScore\": 3.3, \"baseSeverity\": \"LOW\", \"attackVector\": \"LOCAL\", \"attackComplexity\": \"LOW\", \"privilegesRequired\": \"LOW\", \"userInteraction\": \"NONE\", \"scope\": \"UNCHANGED\", \"confidentialityImpact\": \"LOW\", \"integrityImpact\": \"NONE\", \"availabilityImpact\": \"NONE\"}, \"exploitabilityScore\": 1.8, \"impactScore\": 1.4}], \"cvssMetricV2\": [{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"cvssData\": {\"version\": \"2.0\", \"vectorString\": \"AV:L/AC:L/Au:N/C:P/I:N/A:N\", \"baseScore\": 2.1, \"accessVector\": \"LOCAL\", \"accessComplexity\": \"LOW\", \"authentication\": \"NONE\", \"confidentialityImpact\": \"PARTIAL\", \"integrityImpact\": \"NONE\", \"availabilityImpact\": \"NONE\"}, \"baseSeverity\": \"LOW\", \"exploitabilityScore\": 3.9, \"impactScore\": 2.9, \"acInsufInfo\": true, \"obtainAllPrivilege\": false, \"obtainUserPrivilege\": false, \"obtainOtherPrivilege\": false, \"userInteractionRequired\": false}]}",
"published": "2016-07-22T14:59:00.147",
"references": "[{\"url\": \"http://www.openwall.com/lists/oss-security/2016/07/13/2\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://www.openwall.com/lists/oss-security/2016/07/14/3\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://www.ubuntu.com/usn/USN-3032-1\", \"source\": \"cve@mitre.org\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://bazaar.launchpad.net/~ecryptfs/ecryptfs/trunk/revision/857\", \"source\": \"cve@mitre.org\"}, {\"url\": \"https://bugs.launchpad.net/ubuntu/+source/ecryptfs-utils/+bug/1447282\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://www.openwall.com/lists/oss-security/2016/07/13/2\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://www.openwall.com/lists/oss-security/2016/07/14/3\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://www.ubuntu.com/usn/USN-3032-1\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://bazaar.launchpad.net/~ecryptfs/ecryptfs/trunk/revision/857\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://bugs.launchpad.net/ubuntu/+source/ecryptfs-utils/+bug/1447282\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}]",
"sourceIdentifier": "cve@mitre.org",
"vulnStatus": "Modified",
"weaknesses": "[{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"description\": [{\"lang\": \"en\", \"value\": \"CWE-20\"}]}]"
},
"nvd": "{\"cve\":{\"id\":\"CVE-2015-8946\",\"sourceIdentifier\":\"cve@mitre.org\",\"published\":\"2016-07-22T14:59:00.147\",\"lastModified\":\"2026-05-06T22:30:45.220\",\"vulnStatus\":\"Modified\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"ecryptfs-setup-swap in eCryptfs before 111 does not prevent the unencrypted swap partition from activating during boot when using GPT partitioning and certain versions of systemd, which allows local users to obtain sensitive information via unspecified vectors.\"},{\"lang\":\"es\",\"value\":\"ecryptfs-setup-swap en eCryptfs en versiones anteriores a 111 no impide la activaci\u00f3n de la partici\u00f3n de intercambio sin cifrar durante el inicio cuando se utiliza el particionamiento GPT y ciertas versiones de systemd, lo que permite a usuarios locales obtener informaci\u00f3n sensible a trav\u00e9s de vectores no especificados.\"}],\"metrics\":{\"cvssMetricV30\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.0\",\"vectorString\":\"CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N\",\"baseScore\":3.3,\"baseSeverity\":\"LOW\",\"attackVector\":\"LOCAL\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"LOW\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"LOW\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"NONE\"},\"exploitabilityScore\":1.8,\"impactScore\":1.4}],\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:L/AC:L/Au:N/C:P/I:N/A:N\",\"baseScore\":2.1,\"accessVector\":\"LOCAL\",\"accessComplexity\":\"LOW\",\"authentication\":\"NONE\",\"confidentialityImpact\":\"PARTIAL\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"NONE\"},\"baseSeverity\":\"LOW\",\"exploitabilityScore\":3.9,\"impactScore\":2.9,\"acInsufInfo\":true,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":false}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-20\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:canonical:ubuntu_linux:15.10:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E88A537F-F4D0-46B9-9E37-965233C2A355\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:*\",\"matchCriteriaId\":\"F7016A2A-8365-4F1A-89A2-7A19F2BCAE5B\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:ecryptfs:ecryptfs-utils:*:*:*:*:*:*:*:*\",\"versionEndIncluding\":\"110\",\"matchCriteriaId\":\"76E0F5E8-3299-416E-8931-D7F9F68CD4D0\"}]}]}],\"references\":[{\"url\":\"http://www.openwall.com/lists/oss-security/2016/07/13/2\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.openwall.com/lists/oss-security/2016/07/14/3\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.ubuntu.com/usn/USN-3032-1\",\"source\":\"cve@mitre.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://bazaar.launchpad.net/~ecryptfs/ecryptfs/trunk/revision/857\",\"source\":\"cve@mitre.org\"},{\"url\":\"https://bugs.launchpad.net/ubuntu/+source/ecryptfs-utils/+bug/1447282\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.openwall.com/lists/oss-security/2016/07/13/2\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.openwall.com/lists/oss-security/2016/07/14/3\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.ubuntu.com/usn/USN-3032-1\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://bazaar.launchpad.net/~ecryptfs/ecryptfs/trunk/revision/857\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://bugs.launchpad.net/ubuntu/+source/ecryptfs-utils/+bug/1447282\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"}]}}"
}
}
CNVD-2016-05533
Vulnerability from cnvd - Published: 2016-07-27
VLAI
Title
eCryptfs ecryptfs-setup-swap信息泄露漏洞(CNVD-2016-05533)
Description
eCryptfs(Enterprise Cryptographic Filesystem,企业加密文件系统)是软件开发者Dustin Kirkland和Tyler Hicks共同维护的的一套适用于加密Linux系统的磁盘加密软件。该软件兼容POSIX文件系统级加密,并支持文件粒度(文件或目录)加密、多种加密方式等。
eCryptfs 111之前的版本中的ecryptfs-setup-swap存在信息泄露漏洞。本地攻击者可利用该漏洞获取敏感信息。
Severity
中
Patch Name
eCryptfs ecryptfs-setup-swap信息泄露漏洞(CNVD-2016-05533)的补丁
Patch Description
eCryptfs(Enterprise Cryptographic Filesystem,企业加密文件系统)是软件开发者Dustin Kirkland和Tyler Hicks共同维护的的一套适用于加密Linux系统的磁盘加密软件。该软件兼容POSIX文件系统级加密,并支持文件粒度(文件或目录)加密、多种加密方式等。
eCryptfs 111之前的版本中的ecryptfs-setup-swap存在信息泄露漏洞。本地攻击者可利用该漏洞获取敏感信息。目前,供应商发布了安全公告及相关补丁信息,修复了此漏洞。
Formal description
目前厂商已经发布了升级补丁以修复此安全问题,详情请关注厂商主页: http://ecryptfs.org/
Reference
http://www.openwall.com/lists/oss-security/2016/07/13/2
http://www.openwall.com/lists/oss-security/2016/07/14/3
https://bazaar.launchpad.net/~ecryptfs/ecryptfs/trunk/revision/857
Impacted products
| Name | eCryptfs eCryptfs <111 |
|---|
{
"bids": {
"bid": {
"bidNumber": "91791"
}
},
"cves": {
"cve": {
"cveNumber": "CVE-2015-8946"
}
},
"description": "eCryptfs\uff08Enterprise Cryptographic Filesystem\uff0c\u4f01\u4e1a\u52a0\u5bc6\u6587\u4ef6\u7cfb\u7edf\uff09\u662f\u8f6f\u4ef6\u5f00\u53d1\u8005Dustin Kirkland\u548cTyler Hicks\u5171\u540c\u7ef4\u62a4\u7684\u7684\u4e00\u5957\u9002\u7528\u4e8e\u52a0\u5bc6Linux\u7cfb\u7edf\u7684\u78c1\u76d8\u52a0\u5bc6\u8f6f\u4ef6\u3002\u8be5\u8f6f\u4ef6\u517c\u5bb9POSIX\u6587\u4ef6\u7cfb\u7edf\u7ea7\u52a0\u5bc6\uff0c\u5e76\u652f\u6301\u6587\u4ef6\u7c92\u5ea6\uff08\u6587\u4ef6\u6216\u76ee\u5f55\uff09\u52a0\u5bc6\u3001\u591a\u79cd\u52a0\u5bc6\u65b9\u5f0f\u7b49\u3002\r\n\r\neCryptfs 111\u4e4b\u524d\u7684\u7248\u672c\u4e2d\u7684ecryptfs-setup-swap\u5b58\u5728\u4fe1\u606f\u6cc4\u9732\u6f0f\u6d1e\u3002\u672c\u5730\u653b\u51fb\u8005\u53ef\u5229\u7528\u8be5\u6f0f\u6d1e\u83b7\u53d6\u654f\u611f\u4fe1\u606f\u3002",
"discovererName": "Tyler Hicks",
"formalWay": "\u76ee\u524d\u5382\u5546\u5df2\u7ecf\u53d1\u5e03\u4e86\u5347\u7ea7\u8865\u4e01\u4ee5\u4fee\u590d\u6b64\u5b89\u5168\u95ee\u9898\uff0c\u8be6\u60c5\u8bf7\u5173\u6ce8\u5382\u5546\u4e3b\u9875\uff1a\r\nhttp://ecryptfs.org/",
"isEvent": "\u901a\u7528\u8f6f\u786c\u4ef6\u6f0f\u6d1e",
"number": "CNVD-2016-05533",
"openTime": "2016-07-27",
"patchDescription": "eCryptfs\uff08Enterprise Cryptographic Filesystem\uff0c\u4f01\u4e1a\u52a0\u5bc6\u6587\u4ef6\u7cfb\u7edf\uff09\u662f\u8f6f\u4ef6\u5f00\u53d1\u8005Dustin Kirkland\u548cTyler Hicks\u5171\u540c\u7ef4\u62a4\u7684\u7684\u4e00\u5957\u9002\u7528\u4e8e\u52a0\u5bc6Linux\u7cfb\u7edf\u7684\u78c1\u76d8\u52a0\u5bc6\u8f6f\u4ef6\u3002\u8be5\u8f6f\u4ef6\u517c\u5bb9POSIX\u6587\u4ef6\u7cfb\u7edf\u7ea7\u52a0\u5bc6\uff0c\u5e76\u652f\u6301\u6587\u4ef6\u7c92\u5ea6\uff08\u6587\u4ef6\u6216\u76ee\u5f55\uff09\u52a0\u5bc6\u3001\u591a\u79cd\u52a0\u5bc6\u65b9\u5f0f\u7b49\u3002\r\n\r\neCryptfs 111\u4e4b\u524d\u7684\u7248\u672c\u4e2d\u7684ecryptfs-setup-swap\u5b58\u5728\u4fe1\u606f\u6cc4\u9732\u6f0f\u6d1e\u3002\u672c\u5730\u653b\u51fb\u8005\u53ef\u5229\u7528\u8be5\u6f0f\u6d1e\u83b7\u53d6\u654f\u611f\u4fe1\u606f\u3002\u76ee\u524d\uff0c\u4f9b\u5e94\u5546\u53d1\u5e03\u4e86\u5b89\u5168\u516c\u544a\u53ca\u76f8\u5173\u8865\u4e01\u4fe1\u606f\uff0c\u4fee\u590d\u4e86\u6b64\u6f0f\u6d1e\u3002",
"patchName": "eCryptfs ecryptfs-setup-swap\u4fe1\u606f\u6cc4\u9732\u6f0f\u6d1e\uff08CNVD-2016-05533\uff09\u7684\u8865\u4e01",
"products": {
"product": "eCryptfs eCryptfs \u003c111"
},
"referenceLink": "http://www.openwall.com/lists/oss-security/2016/07/13/2\r\nhttp://www.openwall.com/lists/oss-security/2016/07/14/3\r\nhttps://bazaar.launchpad.net/~ecryptfs/ecryptfs/trunk/revision/857",
"serverity": "\u4e2d",
"submitTime": "2016-07-25",
"title": "eCryptfs ecryptfs-setup-swap\u4fe1\u606f\u6cc4\u9732\u6f0f\u6d1e\uff08CNVD-2016-05533\uff09"
}
FKIE_CVE-2015-8946
Vulnerability from fkie_nvd - Published: 2016-07-22 14:59 - Updated: 2026-05-06 22:30
Severity
Summary
ecryptfs-setup-swap in eCryptfs before 111 does not prevent the unencrypted swap partition from activating during boot when using GPT partitioning and certain versions of systemd, which allows local users to obtain sensitive information via unspecified vectors.
References
Impacted products
| Vendor | Product | Version | |
|---|---|---|---|
| canonical | ubuntu_linux | 15.10 | |
| canonical | ubuntu_linux | 16.04 | |
| ecryptfs | ecryptfs-utils | * |
{
"configurations": [
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:canonical:ubuntu_linux:15.10:*:*:*:*:*:*:*",
"matchCriteriaId": "E88A537F-F4D0-46B9-9E37-965233C2A355",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:*",
"matchCriteriaId": "F7016A2A-8365-4F1A-89A2-7A19F2BCAE5B",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:ecryptfs:ecryptfs-utils:*:*:*:*:*:*:*:*",
"matchCriteriaId": "76E0F5E8-3299-416E-8931-D7F9F68CD4D0",
"versionEndIncluding": "110",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
}
],
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "ecryptfs-setup-swap in eCryptfs before 111 does not prevent the unencrypted swap partition from activating during boot when using GPT partitioning and certain versions of systemd, which allows local users to obtain sensitive information via unspecified vectors."
},
{
"lang": "es",
"value": "ecryptfs-setup-swap en eCryptfs en versiones anteriores a 111 no impide la activaci\u00f3n de la partici\u00f3n de intercambio sin cifrar durante el inicio cuando se utiliza el particionamiento GPT y ciertas versiones de systemd, lo que permite a usuarios locales obtener informaci\u00f3n sensible a trav\u00e9s de vectores no especificados."
}
],
"id": "CVE-2015-8946",
"lastModified": "2026-05-06T22:30:45.220",
"metrics": {
"cvssMetricV2": [
{
"acInsufInfo": true,
"baseSeverity": "LOW",
"cvssData": {
"accessComplexity": "LOW",
"accessVector": "LOCAL",
"authentication": "NONE",
"availabilityImpact": "NONE",
"baseScore": 2.1,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "NONE",
"vectorString": "AV:L/AC:L/Au:N/C:P/I:N/A:N",
"version": "2.0"
},
"exploitabilityScore": 3.9,
"impactScore": 2.9,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"source": "nvd@nist.gov",
"type": "Primary",
"userInteractionRequired": false
}
],
"cvssMetricV30": [
{
"cvssData": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "NONE",
"baseScore": 3.3,
"baseSeverity": "LOW",
"confidentialityImpact": "LOW",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N",
"version": "3.0"
},
"exploitabilityScore": 1.8,
"impactScore": 1.4,
"source": "nvd@nist.gov",
"type": "Primary"
}
]
},
"published": "2016-07-22T14:59:00.147",
"references": [
{
"source": "cve@mitre.org",
"url": "http://www.openwall.com/lists/oss-security/2016/07/13/2"
},
{
"source": "cve@mitre.org",
"url": "http://www.openwall.com/lists/oss-security/2016/07/14/3"
},
{
"source": "cve@mitre.org",
"tags": [
"Third Party Advisory"
],
"url": "http://www.ubuntu.com/usn/USN-3032-1"
},
{
"source": "cve@mitre.org",
"url": "https://bazaar.launchpad.net/~ecryptfs/ecryptfs/trunk/revision/857"
},
{
"source": "cve@mitre.org",
"url": "https://bugs.launchpad.net/ubuntu/+source/ecryptfs-utils/+bug/1447282"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://www.openwall.com/lists/oss-security/2016/07/13/2"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://www.openwall.com/lists/oss-security/2016/07/14/3"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory"
],
"url": "http://www.ubuntu.com/usn/USN-3032-1"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "https://bazaar.launchpad.net/~ecryptfs/ecryptfs/trunk/revision/857"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "https://bugs.launchpad.net/ubuntu/+source/ecryptfs-utils/+bug/1447282"
}
],
"sourceIdentifier": "cve@mitre.org",
"vulnStatus": "Modified",
"weaknesses": [
{
"description": [
{
"lang": "en",
"value": "CWE-20"
}
],
"source": "nvd@nist.gov",
"type": "Primary"
}
]
}
GHSA-75GV-98WV-GMX4
Vulnerability from github – Published: 2022-05-17 03:50 – Updated: 2022-05-17 03:50
VLAI
Details
ecryptfs-setup-swap in eCryptfs before 111 does not prevent the unencrypted swap partition from activating during boot when using GPT partitioning and certain versions of systemd, which allows local users to obtain sensitive information via unspecified vectors.
Severity
{
"affected": [],
"aliases": [
"CVE-2015-8946"
],
"database_specific": {
"cwe_ids": [
"CWE-20"
],
"github_reviewed": false,
"github_reviewed_at": null,
"nvd_published_at": "2016-07-22T14:59:00Z",
"severity": "LOW"
},
"details": "ecryptfs-setup-swap in eCryptfs before 111 does not prevent the unencrypted swap partition from activating during boot when using GPT partitioning and certain versions of systemd, which allows local users to obtain sensitive information via unspecified vectors.",
"id": "GHSA-75gv-98wv-gmx4",
"modified": "2022-05-17T03:50:59Z",
"published": "2022-05-17T03:50:59Z",
"references": [
{
"type": "ADVISORY",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2015-8946"
},
{
"type": "WEB",
"url": "https://bazaar.launchpad.net/~ecryptfs/ecryptfs/trunk/revision/857"
},
{
"type": "WEB",
"url": "https://bugs.launchpad.net/ubuntu/+source/ecryptfs-utils/+bug/1447282"
},
{
"type": "WEB",
"url": "http://www.openwall.com/lists/oss-security/2016/07/13/2"
},
{
"type": "WEB",
"url": "http://www.openwall.com/lists/oss-security/2016/07/14/3"
},
{
"type": "WEB",
"url": "http://www.ubuntu.com/usn/USN-3032-1"
}
],
"schema_version": "1.4.0",
"severity": [
{
"score": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N",
"type": "CVSS_V3"
}
]
}
GSD-2015-8946
Vulnerability from gsd - Updated: 2023-12-13 01:20Details
ecryptfs-setup-swap in eCryptfs before 111 does not prevent the unencrypted swap partition from activating during boot when using GPT partitioning and certain versions of systemd, which allows local users to obtain sensitive information via unspecified vectors.
Aliases
Aliases
{
"GSD": {
"alias": "CVE-2015-8946",
"description": "ecryptfs-setup-swap in eCryptfs before 111 does not prevent the unencrypted swap partition from activating during boot when using GPT partitioning and certain versions of systemd, which allows local users to obtain sensitive information via unspecified vectors.",
"id": "GSD-2015-8946",
"references": [
"https://www.suse.com/security/cve/CVE-2015-8946.html"
]
},
"gsd": {
"metadata": {
"exploitCode": "unknown",
"remediation": "unknown",
"reportConfidence": "confirmed",
"type": "vulnerability"
},
"osvSchema": {
"aliases": [
"CVE-2015-8946"
],
"details": "ecryptfs-setup-swap in eCryptfs before 111 does not prevent the unencrypted swap partition from activating during boot when using GPT partitioning and certain versions of systemd, which allows local users to obtain sensitive information via unspecified vectors.",
"id": "GSD-2015-8946",
"modified": "2023-12-13T01:20:03.673079Z",
"schema_version": "1.4.0"
}
},
"namespaces": {
"cve.org": {
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2015-8946",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "ecryptfs-setup-swap in eCryptfs before 111 does not prevent the unencrypted swap partition from activating during boot when using GPT partitioning and certain versions of systemd, which allows local users to obtain sensitive information via unspecified vectors."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "[oss-security] 20160714 Re: CVE Requests: Information exposure caused by ecryptfs-setup-swap failures",
"refsource": "MLIST",
"url": "http://www.openwall.com/lists/oss-security/2016/07/14/3"
},
{
"name": "[oss-security] 20160713 CVE Requests: Information exposure caused by ecryptfs-setup-swap failures",
"refsource": "MLIST",
"url": "http://www.openwall.com/lists/oss-security/2016/07/13/2"
},
{
"name": "https://bazaar.launchpad.net/~ecryptfs/ecryptfs/trunk/revision/857",
"refsource": "CONFIRM",
"url": "https://bazaar.launchpad.net/~ecryptfs/ecryptfs/trunk/revision/857"
},
{
"name": "https://bugs.launchpad.net/ubuntu/+source/ecryptfs-utils/+bug/1447282",
"refsource": "CONFIRM",
"url": "https://bugs.launchpad.net/ubuntu/+source/ecryptfs-utils/+bug/1447282"
},
{
"name": "USN-3032-1",
"refsource": "UBUNTU",
"url": "http://www.ubuntu.com/usn/USN-3032-1"
}
]
}
},
"nvd.nist.gov": {
"configurations": {
"CVE_data_version": "4.0",
"nodes": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:o:canonical:ubuntu_linux:15.10:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:a:ecryptfs:ecryptfs-utils:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndIncluding": "110",
"vulnerable": true
}
],
"operator": "OR"
}
]
},
"cve": {
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2015-8946"
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "en",
"value": "ecryptfs-setup-swap in eCryptfs before 111 does not prevent the unencrypted swap partition from activating during boot when using GPT partitioning and certain versions of systemd, which allows local users to obtain sensitive information via unspecified vectors."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "en",
"value": "CWE-20"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "[oss-security] 20160714 Re: CVE Requests: Information exposure caused by ecryptfs-setup-swap failures",
"refsource": "MLIST",
"tags": [],
"url": "http://www.openwall.com/lists/oss-security/2016/07/14/3"
},
{
"name": "[oss-security] 20160713 CVE Requests: Information exposure caused by ecryptfs-setup-swap failures",
"refsource": "MLIST",
"tags": [],
"url": "http://www.openwall.com/lists/oss-security/2016/07/13/2"
},
{
"name": "USN-3032-1",
"refsource": "UBUNTU",
"tags": [
"Third Party Advisory"
],
"url": "http://www.ubuntu.com/usn/USN-3032-1"
},
{
"name": "https://bazaar.launchpad.net/~ecryptfs/ecryptfs/trunk/revision/857",
"refsource": "CONFIRM",
"tags": [],
"url": "https://bazaar.launchpad.net/~ecryptfs/ecryptfs/trunk/revision/857"
},
{
"name": "https://bugs.launchpad.net/ubuntu/+source/ecryptfs-utils/+bug/1447282",
"refsource": "CONFIRM",
"tags": [],
"url": "https://bugs.launchpad.net/ubuntu/+source/ecryptfs-utils/+bug/1447282"
}
]
}
},
"impact": {
"baseMetricV2": {
"acInsufInfo": true,
"cvssV2": {
"accessComplexity": "LOW",
"accessVector": "LOCAL",
"authentication": "NONE",
"availabilityImpact": "NONE",
"baseScore": 2.1,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "NONE",
"vectorString": "AV:L/AC:L/Au:N/C:P/I:N/A:N",
"version": "2.0"
},
"exploitabilityScore": 3.9,
"impactScore": 2.9,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"severity": "LOW",
"userInteractionRequired": false
},
"baseMetricV3": {
"cvssV3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "NONE",
"baseScore": 3.3,
"baseSeverity": "LOW",
"confidentialityImpact": "LOW",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N",
"version": "3.0"
},
"exploitabilityScore": 1.8,
"impactScore": 1.4
}
},
"lastModifiedDate": "2016-07-27T15:46Z",
"publishedDate": "2016-07-22T14:59Z"
}
}
}
SUSE-SU-2018:0336-1
Vulnerability from csaf_suse - Published: 2018-02-01 09:39 - Updated: 2018-02-01 09:39Summary
Security update for ecryptfs-utils
Severity
Moderate
Notes
Title of the patch: Security update for ecryptfs-utils
Description of the patch: This update for ecryptfs-utils fixes the following issues:
- CVE-2015-8946: ecryptfs-setup-swap improperly configures encrypted swap when using GPT partitioning (bsc#989121)
- CVE-2016-6224: ecryptfs-setup-swap improperly configures encrypted swap when using GPT partitioning on a NVMe or MMC drive (bsc#989122)
Patchnames: SUSE-SLE-DESKTOP-12-SP2-2018-234,SUSE-SLE-DESKTOP-12-SP3-2018-234,SUSE-SLE-RPI-12-SP2-2018-234,SUSE-SLE-SERVER-12-SP2-2018-234,SUSE-SLE-SERVER-12-SP3-2018-234
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
Affected products
Recommended
29 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Desktop 12 SP2:ecryptfs-utils-103-8.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Desktop 12 SP2:ecryptfs-utils-32bit-103-8.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Desktop 12 SP3:ecryptfs-utils-103-8.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Desktop 12 SP3:ecryptfs-utils-32bit-103-8.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP2:ecryptfs-utils-103-8.3.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP2:ecryptfs-utils-103-8.3.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP2:ecryptfs-utils-103-8.3.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP2:ecryptfs-utils-103-8.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP2:ecryptfs-utils-32bit-103-8.3.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP2:ecryptfs-utils-32bit-103-8.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:ecryptfs-utils-103-8.3.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:ecryptfs-utils-103-8.3.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:ecryptfs-utils-103-8.3.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:ecryptfs-utils-103-8.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:ecryptfs-utils-32bit-103-8.3.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:ecryptfs-utils-32bit-103-8.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:ecryptfs-utils-103-8.3.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:ecryptfs-utils-103-8.3.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:ecryptfs-utils-103-8.3.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:ecryptfs-utils-103-8.3.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:ecryptfs-utils-103-8.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:ecryptfs-utils-32bit-103-8.3.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:ecryptfs-utils-32bit-103-8.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:ecryptfs-utils-103-8.3.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:ecryptfs-utils-103-8.3.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:ecryptfs-utils-103-8.3.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:ecryptfs-utils-103-8.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:ecryptfs-utils-32bit-103-8.3.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:ecryptfs-utils-32bit-103-8.3.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
low
Affected products
Recommended
29 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Desktop 12 SP2:ecryptfs-utils-103-8.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Desktop 12 SP2:ecryptfs-utils-32bit-103-8.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Desktop 12 SP3:ecryptfs-utils-103-8.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Desktop 12 SP3:ecryptfs-utils-32bit-103-8.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP2:ecryptfs-utils-103-8.3.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP2:ecryptfs-utils-103-8.3.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP2:ecryptfs-utils-103-8.3.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP2:ecryptfs-utils-103-8.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP2:ecryptfs-utils-32bit-103-8.3.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP2:ecryptfs-utils-32bit-103-8.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:ecryptfs-utils-103-8.3.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:ecryptfs-utils-103-8.3.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:ecryptfs-utils-103-8.3.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:ecryptfs-utils-103-8.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:ecryptfs-utils-32bit-103-8.3.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:ecryptfs-utils-32bit-103-8.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:ecryptfs-utils-103-8.3.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:ecryptfs-utils-103-8.3.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:ecryptfs-utils-103-8.3.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:ecryptfs-utils-103-8.3.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:ecryptfs-utils-103-8.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:ecryptfs-utils-32bit-103-8.3.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:ecryptfs-utils-32bit-103-8.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:ecryptfs-utils-103-8.3.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:ecryptfs-utils-103-8.3.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:ecryptfs-utils-103-8.3.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:ecryptfs-utils-103-8.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:ecryptfs-utils-32bit-103-8.3.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:ecryptfs-utils-32bit-103-8.3.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
low
References
14 references
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for ecryptfs-utils",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for ecryptfs-utils fixes the following issues:\n\n- CVE-2015-8946: ecryptfs-setup-swap improperly configures encrypted swap when using GPT partitioning (bsc#989121)\n- CVE-2016-6224: ecryptfs-setup-swap improperly configures encrypted swap when using GPT partitioning on a NVMe or MMC drive (bsc#989122)\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-SLE-DESKTOP-12-SP2-2018-234,SUSE-SLE-DESKTOP-12-SP3-2018-234,SUSE-SLE-RPI-12-SP2-2018-234,SUSE-SLE-SERVER-12-SP2-2018-234,SUSE-SLE-SERVER-12-SP3-2018-234",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2018_0336-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2018:0336-1",
"url": "https://www.suse.com/support/update/announcement/2018/suse-su-20180336-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2018:0336-1",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2018-February/003694.html"
},
{
"category": "self",
"summary": "SUSE Bug 989121",
"url": "https://bugzilla.suse.com/989121"
},
{
"category": "self",
"summary": "SUSE Bug 989122",
"url": "https://bugzilla.suse.com/989122"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2015-8946 page",
"url": "https://www.suse.com/security/cve/CVE-2015-8946/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2016-6224 page",
"url": "https://www.suse.com/security/cve/CVE-2016-6224/"
}
],
"title": "Security update for ecryptfs-utils",
"tracking": {
"current_release_date": "2018-02-01T09:39:39Z",
"generator": {
"date": "2018-02-01T09:39:39Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2018:0336-1",
"initial_release_date": "2018-02-01T09:39:39Z",
"revision_history": [
{
"date": "2018-02-01T09:39:39Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "ecryptfs-utils-103-8.3.1.aarch64",
"product": {
"name": "ecryptfs-utils-103-8.3.1.aarch64",
"product_id": "ecryptfs-utils-103-8.3.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "ecryptfs-utils-103-8.3.1.ppc64le",
"product": {
"name": "ecryptfs-utils-103-8.3.1.ppc64le",
"product_id": "ecryptfs-utils-103-8.3.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "ecryptfs-utils-103-8.3.1.s390x",
"product": {
"name": "ecryptfs-utils-103-8.3.1.s390x",
"product_id": "ecryptfs-utils-103-8.3.1.s390x"
}
},
{
"category": "product_version",
"name": "ecryptfs-utils-32bit-103-8.3.1.s390x",
"product": {
"name": "ecryptfs-utils-32bit-103-8.3.1.s390x",
"product_id": "ecryptfs-utils-32bit-103-8.3.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "ecryptfs-utils-103-8.3.1.x86_64",
"product": {
"name": "ecryptfs-utils-103-8.3.1.x86_64",
"product_id": "ecryptfs-utils-103-8.3.1.x86_64"
}
},
{
"category": "product_version",
"name": "ecryptfs-utils-32bit-103-8.3.1.x86_64",
"product": {
"name": "ecryptfs-utils-32bit-103-8.3.1.x86_64",
"product_id": "ecryptfs-utils-32bit-103-8.3.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Enterprise Desktop 12 SP2",
"product": {
"name": "SUSE Linux Enterprise Desktop 12 SP2",
"product_id": "SUSE Linux Enterprise Desktop 12 SP2",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sled:12:sp2"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Desktop 12 SP3",
"product": {
"name": "SUSE Linux Enterprise Desktop 12 SP3",
"product_id": "SUSE Linux Enterprise Desktop 12 SP3",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sled:12:sp3"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2",
"product": {
"name": "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2",
"product_id": "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles:12:sp2"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 12 SP2",
"product": {
"name": "SUSE Linux Enterprise Server 12 SP2",
"product_id": "SUSE Linux Enterprise Server 12 SP2",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles:12:sp2"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server for SAP Applications 12 SP2",
"product": {
"name": "SUSE Linux Enterprise Server for SAP Applications 12 SP2",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP2",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles_sap:12:sp2"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 12 SP3",
"product": {
"name": "SUSE Linux Enterprise Server 12 SP3",
"product_id": "SUSE Linux Enterprise Server 12 SP3",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles:12:sp3"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server for SAP Applications 12 SP3",
"product": {
"name": "SUSE Linux Enterprise Server for SAP Applications 12 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP3",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles_sap:12:sp3"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "ecryptfs-utils-103-8.3.1.x86_64 as component of SUSE Linux Enterprise Desktop 12 SP2",
"product_id": "SUSE Linux Enterprise Desktop 12 SP2:ecryptfs-utils-103-8.3.1.x86_64"
},
"product_reference": "ecryptfs-utils-103-8.3.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Desktop 12 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ecryptfs-utils-32bit-103-8.3.1.x86_64 as component of SUSE Linux Enterprise Desktop 12 SP2",
"product_id": "SUSE Linux Enterprise Desktop 12 SP2:ecryptfs-utils-32bit-103-8.3.1.x86_64"
},
"product_reference": "ecryptfs-utils-32bit-103-8.3.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Desktop 12 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ecryptfs-utils-103-8.3.1.x86_64 as component of SUSE Linux Enterprise Desktop 12 SP3",
"product_id": "SUSE Linux Enterprise Desktop 12 SP3:ecryptfs-utils-103-8.3.1.x86_64"
},
"product_reference": "ecryptfs-utils-103-8.3.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Desktop 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ecryptfs-utils-32bit-103-8.3.1.x86_64 as component of SUSE Linux Enterprise Desktop 12 SP3",
"product_id": "SUSE Linux Enterprise Desktop 12 SP3:ecryptfs-utils-32bit-103-8.3.1.x86_64"
},
"product_reference": "ecryptfs-utils-32bit-103-8.3.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Desktop 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ecryptfs-utils-103-8.3.1.aarch64 as component of SUSE Linux Enterprise Server for Raspberry Pi 12 SP2",
"product_id": "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:ecryptfs-utils-103-8.3.1.aarch64"
},
"product_reference": "ecryptfs-utils-103-8.3.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ecryptfs-utils-103-8.3.1.aarch64 as component of SUSE Linux Enterprise Server 12 SP2",
"product_id": "SUSE Linux Enterprise Server 12 SP2:ecryptfs-utils-103-8.3.1.aarch64"
},
"product_reference": "ecryptfs-utils-103-8.3.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ecryptfs-utils-103-8.3.1.ppc64le as component of SUSE Linux Enterprise Server 12 SP2",
"product_id": "SUSE Linux Enterprise Server 12 SP2:ecryptfs-utils-103-8.3.1.ppc64le"
},
"product_reference": "ecryptfs-utils-103-8.3.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ecryptfs-utils-103-8.3.1.s390x as component of SUSE Linux Enterprise Server 12 SP2",
"product_id": "SUSE Linux Enterprise Server 12 SP2:ecryptfs-utils-103-8.3.1.s390x"
},
"product_reference": "ecryptfs-utils-103-8.3.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ecryptfs-utils-103-8.3.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP2",
"product_id": "SUSE Linux Enterprise Server 12 SP2:ecryptfs-utils-103-8.3.1.x86_64"
},
"product_reference": "ecryptfs-utils-103-8.3.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ecryptfs-utils-32bit-103-8.3.1.s390x as component of SUSE Linux Enterprise Server 12 SP2",
"product_id": "SUSE Linux Enterprise Server 12 SP2:ecryptfs-utils-32bit-103-8.3.1.s390x"
},
"product_reference": "ecryptfs-utils-32bit-103-8.3.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ecryptfs-utils-32bit-103-8.3.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP2",
"product_id": "SUSE Linux Enterprise Server 12 SP2:ecryptfs-utils-32bit-103-8.3.1.x86_64"
},
"product_reference": "ecryptfs-utils-32bit-103-8.3.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ecryptfs-utils-103-8.3.1.aarch64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP2",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP2:ecryptfs-utils-103-8.3.1.aarch64"
},
"product_reference": "ecryptfs-utils-103-8.3.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ecryptfs-utils-103-8.3.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 12 SP2",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP2:ecryptfs-utils-103-8.3.1.ppc64le"
},
"product_reference": "ecryptfs-utils-103-8.3.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ecryptfs-utils-103-8.3.1.s390x as component of SUSE Linux Enterprise Server for SAP Applications 12 SP2",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP2:ecryptfs-utils-103-8.3.1.s390x"
},
"product_reference": "ecryptfs-utils-103-8.3.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ecryptfs-utils-103-8.3.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP2",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP2:ecryptfs-utils-103-8.3.1.x86_64"
},
"product_reference": "ecryptfs-utils-103-8.3.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ecryptfs-utils-32bit-103-8.3.1.s390x as component of SUSE Linux Enterprise Server for SAP Applications 12 SP2",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP2:ecryptfs-utils-32bit-103-8.3.1.s390x"
},
"product_reference": "ecryptfs-utils-32bit-103-8.3.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ecryptfs-utils-32bit-103-8.3.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP2",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP2:ecryptfs-utils-32bit-103-8.3.1.x86_64"
},
"product_reference": "ecryptfs-utils-32bit-103-8.3.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ecryptfs-utils-103-8.3.1.aarch64 as component of SUSE Linux Enterprise Server 12 SP3",
"product_id": "SUSE Linux Enterprise Server 12 SP3:ecryptfs-utils-103-8.3.1.aarch64"
},
"product_reference": "ecryptfs-utils-103-8.3.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ecryptfs-utils-103-8.3.1.ppc64le as component of SUSE Linux Enterprise Server 12 SP3",
"product_id": "SUSE Linux Enterprise Server 12 SP3:ecryptfs-utils-103-8.3.1.ppc64le"
},
"product_reference": "ecryptfs-utils-103-8.3.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ecryptfs-utils-103-8.3.1.s390x as component of SUSE Linux Enterprise Server 12 SP3",
"product_id": "SUSE Linux Enterprise Server 12 SP3:ecryptfs-utils-103-8.3.1.s390x"
},
"product_reference": "ecryptfs-utils-103-8.3.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ecryptfs-utils-103-8.3.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP3",
"product_id": "SUSE Linux Enterprise Server 12 SP3:ecryptfs-utils-103-8.3.1.x86_64"
},
"product_reference": "ecryptfs-utils-103-8.3.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ecryptfs-utils-32bit-103-8.3.1.s390x as component of SUSE Linux Enterprise Server 12 SP3",
"product_id": "SUSE Linux Enterprise Server 12 SP3:ecryptfs-utils-32bit-103-8.3.1.s390x"
},
"product_reference": "ecryptfs-utils-32bit-103-8.3.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ecryptfs-utils-32bit-103-8.3.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP3",
"product_id": "SUSE Linux Enterprise Server 12 SP3:ecryptfs-utils-32bit-103-8.3.1.x86_64"
},
"product_reference": "ecryptfs-utils-32bit-103-8.3.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ecryptfs-utils-103-8.3.1.aarch64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP3:ecryptfs-utils-103-8.3.1.aarch64"
},
"product_reference": "ecryptfs-utils-103-8.3.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ecryptfs-utils-103-8.3.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 12 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP3:ecryptfs-utils-103-8.3.1.ppc64le"
},
"product_reference": "ecryptfs-utils-103-8.3.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ecryptfs-utils-103-8.3.1.s390x as component of SUSE Linux Enterprise Server for SAP Applications 12 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP3:ecryptfs-utils-103-8.3.1.s390x"
},
"product_reference": "ecryptfs-utils-103-8.3.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ecryptfs-utils-103-8.3.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP3:ecryptfs-utils-103-8.3.1.x86_64"
},
"product_reference": "ecryptfs-utils-103-8.3.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ecryptfs-utils-32bit-103-8.3.1.s390x as component of SUSE Linux Enterprise Server for SAP Applications 12 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP3:ecryptfs-utils-32bit-103-8.3.1.s390x"
},
"product_reference": "ecryptfs-utils-32bit-103-8.3.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ecryptfs-utils-32bit-103-8.3.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP3:ecryptfs-utils-32bit-103-8.3.1.x86_64"
},
"product_reference": "ecryptfs-utils-32bit-103-8.3.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP3"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2015-8946",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2015-8946"
}
],
"notes": [
{
"category": "general",
"text": "ecryptfs-setup-swap in eCryptfs before 111 does not prevent the unencrypted swap partition from activating during boot when using GPT partitioning and certain versions of systemd, which allows local users to obtain sensitive information via unspecified vectors.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Desktop 12 SP2:ecryptfs-utils-103-8.3.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP2:ecryptfs-utils-32bit-103-8.3.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP3:ecryptfs-utils-103-8.3.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP3:ecryptfs-utils-32bit-103-8.3.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2:ecryptfs-utils-103-8.3.1.aarch64",
"SUSE Linux Enterprise Server 12 SP2:ecryptfs-utils-103-8.3.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2:ecryptfs-utils-103-8.3.1.s390x",
"SUSE Linux Enterprise Server 12 SP2:ecryptfs-utils-103-8.3.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2:ecryptfs-utils-32bit-103-8.3.1.s390x",
"SUSE Linux Enterprise Server 12 SP2:ecryptfs-utils-32bit-103-8.3.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:ecryptfs-utils-103-8.3.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:ecryptfs-utils-103-8.3.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:ecryptfs-utils-103-8.3.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:ecryptfs-utils-103-8.3.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:ecryptfs-utils-32bit-103-8.3.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:ecryptfs-utils-32bit-103-8.3.1.x86_64",
"SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:ecryptfs-utils-103-8.3.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ecryptfs-utils-103-8.3.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ecryptfs-utils-103-8.3.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ecryptfs-utils-103-8.3.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ecryptfs-utils-103-8.3.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ecryptfs-utils-32bit-103-8.3.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ecryptfs-utils-32bit-103-8.3.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ecryptfs-utils-103-8.3.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ecryptfs-utils-103-8.3.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ecryptfs-utils-103-8.3.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ecryptfs-utils-103-8.3.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ecryptfs-utils-32bit-103-8.3.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ecryptfs-utils-32bit-103-8.3.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2015-8946",
"url": "https://www.suse.com/security/cve/CVE-2015-8946"
},
{
"category": "external",
"summary": "SUSE Bug 989121 for CVE-2015-8946",
"url": "https://bugzilla.suse.com/989121"
},
{
"category": "external",
"summary": "SUSE Bug 989122 for CVE-2015-8946",
"url": "https://bugzilla.suse.com/989122"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Desktop 12 SP2:ecryptfs-utils-103-8.3.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP2:ecryptfs-utils-32bit-103-8.3.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP3:ecryptfs-utils-103-8.3.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP3:ecryptfs-utils-32bit-103-8.3.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2:ecryptfs-utils-103-8.3.1.aarch64",
"SUSE Linux Enterprise Server 12 SP2:ecryptfs-utils-103-8.3.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2:ecryptfs-utils-103-8.3.1.s390x",
"SUSE Linux Enterprise Server 12 SP2:ecryptfs-utils-103-8.3.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2:ecryptfs-utils-32bit-103-8.3.1.s390x",
"SUSE Linux Enterprise Server 12 SP2:ecryptfs-utils-32bit-103-8.3.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:ecryptfs-utils-103-8.3.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:ecryptfs-utils-103-8.3.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:ecryptfs-utils-103-8.3.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:ecryptfs-utils-103-8.3.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:ecryptfs-utils-32bit-103-8.3.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:ecryptfs-utils-32bit-103-8.3.1.x86_64",
"SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:ecryptfs-utils-103-8.3.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ecryptfs-utils-103-8.3.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ecryptfs-utils-103-8.3.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ecryptfs-utils-103-8.3.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ecryptfs-utils-103-8.3.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ecryptfs-utils-32bit-103-8.3.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ecryptfs-utils-32bit-103-8.3.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ecryptfs-utils-103-8.3.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ecryptfs-utils-103-8.3.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ecryptfs-utils-103-8.3.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ecryptfs-utils-103-8.3.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ecryptfs-utils-32bit-103-8.3.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ecryptfs-utils-32bit-103-8.3.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Desktop 12 SP2:ecryptfs-utils-103-8.3.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP2:ecryptfs-utils-32bit-103-8.3.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP3:ecryptfs-utils-103-8.3.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP3:ecryptfs-utils-32bit-103-8.3.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2:ecryptfs-utils-103-8.3.1.aarch64",
"SUSE Linux Enterprise Server 12 SP2:ecryptfs-utils-103-8.3.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2:ecryptfs-utils-103-8.3.1.s390x",
"SUSE Linux Enterprise Server 12 SP2:ecryptfs-utils-103-8.3.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2:ecryptfs-utils-32bit-103-8.3.1.s390x",
"SUSE Linux Enterprise Server 12 SP2:ecryptfs-utils-32bit-103-8.3.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:ecryptfs-utils-103-8.3.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:ecryptfs-utils-103-8.3.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:ecryptfs-utils-103-8.3.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:ecryptfs-utils-103-8.3.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:ecryptfs-utils-32bit-103-8.3.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:ecryptfs-utils-32bit-103-8.3.1.x86_64",
"SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:ecryptfs-utils-103-8.3.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ecryptfs-utils-103-8.3.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ecryptfs-utils-103-8.3.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ecryptfs-utils-103-8.3.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ecryptfs-utils-103-8.3.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ecryptfs-utils-32bit-103-8.3.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ecryptfs-utils-32bit-103-8.3.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ecryptfs-utils-103-8.3.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ecryptfs-utils-103-8.3.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ecryptfs-utils-103-8.3.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ecryptfs-utils-103-8.3.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ecryptfs-utils-32bit-103-8.3.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ecryptfs-utils-32bit-103-8.3.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2018-02-01T09:39:39Z",
"details": "low"
}
],
"title": "CVE-2015-8946"
},
{
"cve": "CVE-2016-6224",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2016-6224"
}
],
"notes": [
{
"category": "general",
"text": "ecryptfs-setup-swap in eCryptfs does not prevent the unencrypted swap partition from activating during boot when using GPT partitioning on a (1) NVMe or (2) MMC drive, which allows local users to obtain sensitive information via unspecified vectors. NOTE: this vulnerability exists because of an incomplete fix for CVE-2015-8946.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Desktop 12 SP2:ecryptfs-utils-103-8.3.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP2:ecryptfs-utils-32bit-103-8.3.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP3:ecryptfs-utils-103-8.3.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP3:ecryptfs-utils-32bit-103-8.3.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2:ecryptfs-utils-103-8.3.1.aarch64",
"SUSE Linux Enterprise Server 12 SP2:ecryptfs-utils-103-8.3.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2:ecryptfs-utils-103-8.3.1.s390x",
"SUSE Linux Enterprise Server 12 SP2:ecryptfs-utils-103-8.3.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2:ecryptfs-utils-32bit-103-8.3.1.s390x",
"SUSE Linux Enterprise Server 12 SP2:ecryptfs-utils-32bit-103-8.3.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:ecryptfs-utils-103-8.3.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:ecryptfs-utils-103-8.3.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:ecryptfs-utils-103-8.3.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:ecryptfs-utils-103-8.3.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:ecryptfs-utils-32bit-103-8.3.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:ecryptfs-utils-32bit-103-8.3.1.x86_64",
"SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:ecryptfs-utils-103-8.3.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ecryptfs-utils-103-8.3.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ecryptfs-utils-103-8.3.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ecryptfs-utils-103-8.3.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ecryptfs-utils-103-8.3.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ecryptfs-utils-32bit-103-8.3.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ecryptfs-utils-32bit-103-8.3.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ecryptfs-utils-103-8.3.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ecryptfs-utils-103-8.3.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ecryptfs-utils-103-8.3.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ecryptfs-utils-103-8.3.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ecryptfs-utils-32bit-103-8.3.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ecryptfs-utils-32bit-103-8.3.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2016-6224",
"url": "https://www.suse.com/security/cve/CVE-2016-6224"
},
{
"category": "external",
"summary": "SUSE Bug 989121 for CVE-2016-6224",
"url": "https://bugzilla.suse.com/989121"
},
{
"category": "external",
"summary": "SUSE Bug 989122 for CVE-2016-6224",
"url": "https://bugzilla.suse.com/989122"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Desktop 12 SP2:ecryptfs-utils-103-8.3.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP2:ecryptfs-utils-32bit-103-8.3.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP3:ecryptfs-utils-103-8.3.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP3:ecryptfs-utils-32bit-103-8.3.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2:ecryptfs-utils-103-8.3.1.aarch64",
"SUSE Linux Enterprise Server 12 SP2:ecryptfs-utils-103-8.3.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2:ecryptfs-utils-103-8.3.1.s390x",
"SUSE Linux Enterprise Server 12 SP2:ecryptfs-utils-103-8.3.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2:ecryptfs-utils-32bit-103-8.3.1.s390x",
"SUSE Linux Enterprise Server 12 SP2:ecryptfs-utils-32bit-103-8.3.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:ecryptfs-utils-103-8.3.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:ecryptfs-utils-103-8.3.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:ecryptfs-utils-103-8.3.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:ecryptfs-utils-103-8.3.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:ecryptfs-utils-32bit-103-8.3.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:ecryptfs-utils-32bit-103-8.3.1.x86_64",
"SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:ecryptfs-utils-103-8.3.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ecryptfs-utils-103-8.3.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ecryptfs-utils-103-8.3.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ecryptfs-utils-103-8.3.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ecryptfs-utils-103-8.3.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ecryptfs-utils-32bit-103-8.3.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ecryptfs-utils-32bit-103-8.3.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ecryptfs-utils-103-8.3.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ecryptfs-utils-103-8.3.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ecryptfs-utils-103-8.3.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ecryptfs-utils-103-8.3.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ecryptfs-utils-32bit-103-8.3.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ecryptfs-utils-32bit-103-8.3.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Desktop 12 SP2:ecryptfs-utils-103-8.3.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP2:ecryptfs-utils-32bit-103-8.3.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP3:ecryptfs-utils-103-8.3.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP3:ecryptfs-utils-32bit-103-8.3.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2:ecryptfs-utils-103-8.3.1.aarch64",
"SUSE Linux Enterprise Server 12 SP2:ecryptfs-utils-103-8.3.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2:ecryptfs-utils-103-8.3.1.s390x",
"SUSE Linux Enterprise Server 12 SP2:ecryptfs-utils-103-8.3.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2:ecryptfs-utils-32bit-103-8.3.1.s390x",
"SUSE Linux Enterprise Server 12 SP2:ecryptfs-utils-32bit-103-8.3.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:ecryptfs-utils-103-8.3.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:ecryptfs-utils-103-8.3.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:ecryptfs-utils-103-8.3.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:ecryptfs-utils-103-8.3.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:ecryptfs-utils-32bit-103-8.3.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:ecryptfs-utils-32bit-103-8.3.1.x86_64",
"SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:ecryptfs-utils-103-8.3.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ecryptfs-utils-103-8.3.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ecryptfs-utils-103-8.3.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ecryptfs-utils-103-8.3.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ecryptfs-utils-103-8.3.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ecryptfs-utils-32bit-103-8.3.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ecryptfs-utils-32bit-103-8.3.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ecryptfs-utils-103-8.3.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ecryptfs-utils-103-8.3.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ecryptfs-utils-103-8.3.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ecryptfs-utils-103-8.3.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ecryptfs-utils-32bit-103-8.3.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ecryptfs-utils-32bit-103-8.3.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2018-02-01T09:39:39Z",
"details": "low"
}
],
"title": "CVE-2016-6224"
}
]
}
Loading…
Trend slope:
-
(linear fit over daily sighting counts)
Show additional events:
Loading…
Experimental. This forecast is provided for visualization only and may change without notice. Do not use it for operational decisions.
Forecast uses a logistic model when the trend is rising, or an exponential decay model when the trend is falling. Fitted via linearized least squares.
Sightings
| Author | Source | Type | Date | Other |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.
Loading…
Loading…