PublicDateAtUSN: 2014-12-31
Candidate: CVE-2014-9687
PublicDate: 2015-03-16 14:59:00 UTC
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9687
 https://bugs.launchpad.net/ecryptfs/+bug/906550/comments/5
 http://seclists.org/oss-sec/2015/q1/498
 https://ubuntu.com/security/notices/USN-2524-1
Description:
 eCryptfs 104 and earlier uses a default salt to encrypt the mount
 passphrase, which makes it easier for attackers to obtain user passwords
 via a brute force attack.
Ubuntu-Description:
Notes:
Bugs:
Priority: medium
Discovered-by: Sylvain Pelissier
Assigned-to: tyhicks
CVSS: 

Patches_ecryptfs-utils:
upstream_ecryptfs-utils: needed
lucid_ecryptfs-utils: released (83-0ubuntu3.2.10.04.6)
precise_ecryptfs-utils: released (96-0ubuntu3.4)
trusty_ecryptfs-utils: released (104-0ubuntu1.14.04.3)
trusty/esm_ecryptfs-utils: released (104-0ubuntu1.14.04.3)
utopic_ecryptfs-utils: released (104-0ubuntu1.14.10.3)
devel_ecryptfs-utils: released (105-0ubuntu1)