Vigil@nce - Linux kernel: buffer overflow of eCryptfs write_tag_3_packet
November 2013 by Vigil@nce
This bulletin was written by Vigil@nce : http://vigilance.fr/offer
SYNTHESIS OF THE VULNERABILITY
An attacker can generate a buffer overflow in the eCryptfs
write_tag_3_packet() function of the Linux kernel, in order to
trigger a denial of service, and possibly to execute code.
Impacted products: Linux
Severity: 2/4
Creation date: 04/11/2013
DESCRIPTION OF THE VULNERABILITY
The eCryptfs filesystem is used to encrypt data.
The ecryptfs_create() function creates a directory. However, if
the size of the key is too large, an overflow occurs in the
write_tag_3_packet() function.
An attacker can therefore generate a buffer overflow in the
eCryptfs write_tag_3_packet() function of the Linux kernel, in
order to trigger a denial of service, and possibly to execute code.
ACCESS TO THE COMPLETE VIGIL@NCE BULLETIN
http://vigilance.fr/vulnerability/Linux-kernel-buffer-overflow-of-eCryptfs-write-tag-3-packet-13685