Wind River Support Network

HomeDefectsLIN7-6598

Fixed

LIN7-6598 : Security Advisory - ecryptfs-utils - CVE-2016-6224

Created: Jul 27, 2016 Updated: Sep 8, 2018

Resolved Date: Sep 5, 2016

Found In Version: 7.0.0.18

Fix Version: 7.0.0.20

Severity: Standard

Applicable for: Wind River Linux 7

Component/s: Userspace

Description

ecryptfs-setup-swap in eCryptfs does not prevent the unencrypted swap partition from activating during boot when using GPT partitioning on a (1) NVMe or (2) MMC drive, which allows local users to obtain sensitive information via unspecified vectors.  NOTE: this vulnerability exists because of an incomplete fix for CVE-2015-8946.

http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2016-6224

Other Downloads

Wind River Linux 7.0.0.20
Wind River Linux 7.0.0.21
Wind River Linux 7.0.0.22
Wind River Linux 7.0.0.23
Wind River Linux 7.0.0.24
Wind River Linux 7.0.0.25
Wind River Linux 7.0.0.26
Wind River Linux 7.0.0.27
Wind River Linux 7.0.0.28
Wind River Linux 7.0.0.29
Wind River Linux 7.0.0.30
Wind River Linux 7.0.0.31

CVEs

CVE-2016-6224