Sylvain Pelissier discovered that eCryptfs did not generate a random salt when encrypting the mount passphrase with the login password. An attacker could use this issue to discover the login password used to protect the mount passphrase and gain unintended access to the encrypted files.
{ "availability": "No subscription required", "binaries": [ { "binary_version": "104-0ubuntu1.14.04.3", "binary_name": "ecryptfs-utils" }, { "binary_version": "104-0ubuntu1.14.04.3", "binary_name": "ecryptfs-utils-dbg" }, { "binary_version": "104-0ubuntu1.14.04.3", "binary_name": "libecryptfs-dev" }, { "binary_version": "104-0ubuntu1.14.04.3", "binary_name": "libecryptfs0" }, { "binary_version": "104-0ubuntu1.14.04.3", "binary_name": "python-ecryptfs" } ] }