Launchpad CVE tracker

CVE 2016-6224

ecryptfs-setup-swap in eCryptfs does not prevent the unencrypted swap partition from activating during boot when using GPT partitioning on a (1) NVMe or (2) MMC drive, which allows local users to obtain sensitive information via unspecified vectors. NOTE: this vulnerability exists because of an incomplete fix for CVE-2015-8946.

Related bugs and status

CVE-2016-6224 (Candidate) is related to these bugs:

Bug #1447282: Does not use encrypted swap when using GPT partitioning + encrypted home directory (ecryptfs)

		In	Importance	Status
1447282	Does not use encrypted swap when using GPT partitioning + encrypted home directory (ecryptfs)	ecryptfs-utils (Ubuntu)	High	Fix Released
1447282	Does not use encrypted swap when using GPT partitioning + encrypted home directory (ecryptfs)	ecryptfs-utils (Ubuntu Vivid)	High	Fix Released
1447282	Does not use encrypted swap when using GPT partitioning + encrypted home directory (ecryptfs)	eCryptfs	High	Fix Committed
1447282	Does not use encrypted swap when using GPT partitioning + encrypted home directory (ecryptfs)	ecryptfs-utils (Ubuntu Yakkety)	High	Fix Released
1447282	Does not use encrypted swap when using GPT partitioning + encrypted home directory (ecryptfs)	ecryptfs-utils (Ubuntu Xenial)	High	Fix Released

See the

CVE page on Mitre.org for more details.

Launchpad.net

CVE 2016-6224

References