CVE-2016-6224

ecryptfs-setup-swap in eCryptfs does not prevent the unencrypted swap partition from activating during boot when using GPT partitioning on a (1) NVMe or (2) MMC drive, which allows local users to obtain sensitive information via unspecified vectors. NOTE: this vulnerability exists because of an incomplete fix for CVE-2015-8946.

Published: Jul 22, 2016
Updated: Apr 13, 2023
CVE: CVE-2016-6224
Severity: Low
Exploit:

CVSS v3:

Severity: Low
Score: 3.3
AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

CVSS v2:

Severity: Low
Score: 2.1
AV:L/AC:L/Au:N/C:P/I:N/A:N

CWEs:

CWE-20

Affected Software
References

Software	From	Fixed in
ecryptfs / ecryptfs-utils	-	110.x
canonical / ubuntu_linux	15.10	15.10.x
canonical / ubuntu_linux	14.04	14.04.x

http://www.openwall.com/lists/oss-security/2016/07/13/2
http://www.openwall.com/lists/oss-security/2016/07/14/3
http://www.ubuntu.com/usn/USN-3032-1
https://bazaar.launchpad.net/~ecryptfs/ecryptfs/trunk/revision/882
https://bugs.launchpad.net/ecryptfs/+bug/1597154
https://bugs.launchpad.net/ubuntu/+source/ecryptfs-utils/+bug/1447282
https://lists.fedoraproject.org/archives/list/[email protected]/message/K5WWCVHDLRLZTYMXEIONYFHLYAXXLJW3/
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/K5WWCVHDLRLZTYMXEIONYFHLYAXXLJW3/

Vulnerability Database

289,784

CVE-2016-6224