CVE-2011-3145

low-risk
Published 2019-04-22

When mount.ecrpytfs_private before version 87-0ubuntu1.2 calls setreuid() it doesn't also set the effective group id. So when it creates the new version, mtab.tmp, it's created with the group id of the user running mount.ecryptfs_private.

Do I need to act?

-
0.23% chance of exploitation
EPSS score — low exploit probability
-
Not on CISA KEV list
No confirmed active exploitation reported to CISA
?
Patch status unknown
Check vendor advisories for fix availability and mitigation guidance
3
CVSS 3.8/10 Low
LOCAL / LOW complexity

Affected Products (1)

Mount.Ecrpytfs Private

Affected Vendors

Mount.Ecrpytfs Private Project

References (2)

Patch http://bazaar.launchpad.net/~ecryptfs/ecryptfs/trunk/revision/558
Patch http://bazaar.launchpad.net/~ecryptfs/ecryptfs/trunk/revision/558
20
/ 100
low-risk
Severity 14/34 · Moderate
Exploitability 1/34 · Minimal
Exposure 5/34 · Minimal