Posted by Hector Marco on Nov 15

Hello All,

Affected package
—————-
Cryptsetup <= 2:1

CVE-ID
——
CVE-2016-4484

Description
———–
A vulnerability in Cryptsetup, concretely in the scripts that unlock the
system partition when the partition is ciphered using LUKS (Linux
Unified Key Setup).

This vulnerability allows to obtain a root initramfs shell on affected
systems. The vulnerability is very reliable because it doesn’t depend on
specific systems or…