Launchpad CVE tracker

CVE 2014-9687

eCryptfs 104 and earlier uses a default salt to encrypt the mount passphrase, which makes it easier for attackers to obtain user passwords via a brute force attack.

Related bugs and status

CVE-2014-9687 (Candidate) is related to these bugs:

Bug #1020902: ecryptfs may truncate encrypted passphrase store

Summary				In	Importance	Status
	1020902	ecryptfs may truncate encrypted passphrase store		ecryptfs-utils (Ubuntu)	High	Fix Released

Bug #1480532: ECB encryption of passphrase

Summary				In	Importance	Status
	1480532	ECB encryption of passphrase		eCryptfs	Medium	Confirmed

See the

CVE page on Mitre.org for more details.

References

MLIST: [oss-security] 2015021...
MLIST: [oss-security] 2015021...
MLIST: [oss-security] 2015022...
MISC: https://bugs.launchpad...
UBUNTU: USN-2524-1
SUSE: openSUSE-SU-2016:0291

Launchpad.net

CVE 2014-9687

Related bugs and status

Related bugs

References