CVE-2016-6224 : ecryptfs-setup-swap in eCryptfs does not prevent the unencrypted swap partition from activating during boot when using G

ecryptfs-setup-swap in eCryptfs does not prevent the unencrypted swap partition from activating during boot when using GPT partitioning on a (1) NVMe or (2) MMC drive, which allows local users to obtain sensitive information via unspecified vectors. NOTE: this vulnerability exists because of an incomplete fix for CVE-2015-8946.

Published 2016-07-22 14:59:02

Updated 2017-08-08 01:34:00

Source MITRE

View at NVD, CVE.org

Vulnerability category: Input validation

Exploit prediction scoring system (EPSS) score for CVE-2016-6224

Probability of exploitation activity in the next 30 days: 0.04%

Percentile, the proportion of vulnerabilities that are scored at or less: ~ 6 % EPSS Score History EPSS FAQ

CVSS scores for CVE-2016-6224

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source
2.1	LOW	AV:L/AC:L/Au:N/C:P/I:N/A:N	3.9	2.9	NIST
Access Vector: Local Access Complexity: Low Authentication: None Confidentiality Impact: Partial Integrity Impact: None Availability Impact: None
3.3	LOW	CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N	1.8	1.4	NIST
Attack Vector: Local Attack Complexity: Low Privileges Required: Low User Interaction: None Scope: Unchanged Confidentiality: Low Integrity: None Availability: None

CWE ids for CVE-2016-6224

CWE-20 Improper Input Validation

The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.

Assigned by: nvd@nist.gov (Primary)

References for CVE-2016-6224

https://bazaar.launchpad.net/~ecryptfs/ecryptfs/trunk/revision/882

~ecryptfs/ecryptfs/trunk : revision 882
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/K5WWCVHDLRLZTYMXEIONYFHLYAXXLJW3/

[SECURITY] Fedora 24 Update: ecryptfs-utils-111-1.fc24 - package-announce - Fedora Mailing-Lists
https://bugs.launchpad.net/ecryptfs/+bug/1597154

Bug #1597154 “ecryptfs-setup-swap leaves swap unencrypted with G...” : Bugs : eCryptfs
https://bugs.launchpad.net/ubuntu/+source/ecryptfs-utils/+bug/1447282

Bug #1447282 “Does not use encrypted swap when using GPT partiti...” : Bugs : ecryptfs-utils package : Ubuntu

CVEs referencing this url
http://www.openwall.com/lists/oss-security/2016/07/14/3

oss-security - Re: CVE Requests: Information exposure caused by ecryptfs-setup-swap failures

CVEs referencing this url
http://www.openwall.com/lists/oss-security/2016/07/13/2

oss-security - CVE Requests: Information exposure caused by ecryptfs-setup-swap failures

CVEs referencing this url
http://www.ubuntu.com/usn/USN-3032-1

USN-3032-1: eCryptfs vulnerability | Ubuntu security notices
Third Party Advisory

CVEs referencing this url

Products affected by CVE-2016-6224

Canonical » Ubuntu Linux » Version: 15.10
cpe:2.3:o:canonical:ubuntu_linux:15.10:*:*:*:*:*:*:*
Matching versions
Canonical » Ubuntu Linux » Version: 14.04 LTS Edition
cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:lts:*:*:*
Matching versions
Ecryptfs » Ecryptfs-utils
Versions up to, including, (<=) 110
cpe:2.3:a:ecryptfs:ecryptfs-utils:*:*:*:*:*:*:*:*
Matching versions

Vulnerability Details : CVE-2016-6224

Exploit prediction scoring system (EPSS) score for CVE-2016-6224

CVSS scores for CVE-2016-6224

CWE ids for CVE-2016-6224

References for CVE-2016-6224

Products affected by CVE-2016-6224