An update that contains security fixes can now be installed.
Description:
This update of ecryptfs-utils fixes several security problems:
- CVE-2011-1831 - Race condition when checking mountpoint during mount. - CVE-2011-1832 - Race condition when checking mountpoint during unmount. - CVE-2011-1833 - Race condition when checking source during mount. - CVE-2011-1834 - Improper mtab handling allowing corruption due to resource limits, signals, etc. - CVE-2011-1835 - Key poisoning in ecryptfs-setup-private due to insecure temp directory. - CVE-2011-1837 - Predictable lock counter name and associated races.
Patch Instructions:
To install this openSUSE Security Update use YaST online_update. Alternatively you can run the command listed for your product:
- openSUSE 11.4:
zypper in -t patch ecryptfs-utils-4986
- openSUSE 11.3:
zypper in -t patch ecryptfs-utils-4986
To bring your system up-to-date, use "zypper patch".