Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
mount.ecrpytfs_private sets group owner of /etc/mtab to user's primary group
Vulnerability Description
When mount.ecrpytfs_private before version 87-0ubuntu1.2 calls setreuid() it doesn't also set the effective group id. So when it creates the new version, mtab.tmp, it's created with the group id of the user running mount.ecryptfs_private.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
eCryptfs 安全特征问题漏洞
Vulnerability Description
eCryptfs(Enterprise Cryptographic Filesystem,企业加密文件系统)是一套适用于加密Linux系统的磁盘加密软件。该软件兼容POSIX文件系统级加密,并支持文件粒度(文件或目录)加密、多种加密方式等。 eCryptfs中存在安全绕过漏洞。远程攻击者可以利用该漏洞绕过某些安全限制并获得应用程序的授权访问来破坏“mtab”文件,导致拒绝服务。
CVSS Information
N/A
Vulnerability Type
N/A