Incomplete Fix for eCryptfs Swap Encryption Vulnerability
CVE-2016-6224 · LOW Severity
AV:L/AC:L/AU:N/C:P/I:N/A:N
ecryptfs-setup-swap in eCryptfs does not prevent the unencrypted swap partition from activating during boot when using GPT partitioning on a (1) NVMe or (2) MMC drive, which allows local users to obtain sensitive information via unspecified vectors. NOTE: this vulnerability exists because of an incomplete fix for CVE-2015-8946.
Learn more about our User Device Pen Test.