CVE-2011-3145

Advisory lineage Upstream: 0 Downstream: 3

Downstream

DEBIAN-CVE-2011-3145 DSA-2382-1 RHSA-2011:1241

Modified

Published: 22 Apr 2019, 15:35

Last modified:16 Sept 2024, 22:51

Vulnerability Summary

Overall Risk (default)

high

70/100

CVSS Score

9.8 CRITICAL

v3.0 (nvd)

EPSS Score

0.23% LOW

0% probability 0.00%

KEV

Not listed

Ransomware

No reports

Public exploits

None found

Dark Web

Not detected

Timeline

22 Apr 2019, 15:35

Published

Vulnerability first disclosed

16 Sept 2024, 22:51

Last Modified

Vulnerability information updated

Description

When mount.ecrpytfs_private before version 87-0ubuntu1.2 calls setreuid() it doesn't also set the effective group id. So when it creates the new version, mtab.tmp, it's created with the group id of the user running mount.ecryptfs_private.

CVSS Metrics

v3.0•LOW•Score: 3.8CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:L
v3.0•CRITICAL•Score: 9.8CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
v2.0•HIGH•Score: 7.5AV:N/AC:L/Au:N/C:P/I:P/A:P

EPSS Trends

Current EPSS score: 0.23%• Percentile: 46%

Techniques & Countermeasures

CWE-254•7PK - Security Features
Software security is not security software. Here we're concerned with topics like authentication, access control, confidentiality, cryptography, and privilege management.

Affected Systems

mount.ecrpytfs_private_project•mount.ecrpytfs_private
na

References (1)

http://bazaar.launchpad.net/~ecryptfs/ecryptfs/trunk/revision/558