Candidate: CVE-2010-3073
PublicDate: 2010-09-17 18:00:00 UTC
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-3073
Description:
 SSL_Cipher.cpp in EncFS before 1.7.0 does not properly handle integer data
 sizes when constructing headers intended for randomization of
 initialization vectors, which makes it easier for local users to obtain
 sensitive information by defeating cryptographic protection mechanisms.
Ubuntu-Description:
Notes:
Bugs:
Priority: medium
Discovered-by:
Assigned-to:
CVSS: 

Patches_encfs:
upstream_encfs: released (1.7.0)
dapper_encfs: ignored (reached end-of-life)
hardy_encfs: ignored (reached end-of-life)
jaunty_encfs: ignored (reached end-of-life)
karmic_encfs: ignored (reached end-of-life)
lucid_encfs: ignored (reached end-of-life)
maverick_encfs: ignored (reached end-of-life)
natty_encfs: not-affected (1.7.2-1)
oneiric_encfs: not-affected (1.7.2-1)
precise_encfs: not-affected (1.7.2-1)
quantal_encfs: not-affected (1.7.2-1)
raring_encfs: not-affected (1.7.2-1)
saucy_encfs: not-affected (1.7.2-1)
devel_encfs: not-affected (1.7.2-1)