| Release | Version |
|---|---|
| buster | 0.2.4-2 |
| buster (security) | 0.2.4-2+deb10u1 |
| bullseye | 0.2.9-1 |
| bookworm | 0.3.3-1 |
| trixie | 0.3.4-2 |
| sid | 0.3.4-2 |
| Bug | buster | bullseye | bookworm | trixie | sid | Description |
|---|---|---|---|---|---|---|
| CVE-2022-25328 | vulnerable (no DSA) | vulnerable (no DSA) | fixed | fixed | fixed | The bash_completion script for fscrypt allows injection of commands vi ... |
| CVE-2022-25327 | vulnerable (no DSA) | vulnerable (no DSA) | fixed | fixed | fixed | The PAM module for fscrypt doesn't adequately validate fscrypt metadat ... |
| CVE-2022-25326 | vulnerable (no DSA) | vulnerable (no DSA) | fixed | fixed | fixed | fscrypt through v0.3.2 creates a world-writable directory by default w ... |
| Bug | Description |
|---|---|
| CVE-2018-6558 | The pam_fscrypt module in fscrypt before 0.2.4 may incorrectly restore ... |