It was reported [1] that by default, if no salt=/passphrase_salt= stanza supplied, standard eCryptfs configuration set up by ecryptfs-setup-private has a security implication: all installations end up wrapping (encrypting) the mount passphrase with the user login password and the default salt value (0x0011223344556677). This simplifies bruteforcing of an actual encryption key. No patch is available at this time. [1]: https://bugs.launchpad.net/ecryptfs/+bug/906550
Created ecryptfs-utils tracking bugs for this issue: Affects: fedora-all [bug 1193092]
CVE assignment: http://seclists.org/oss-sec/2015/q1/706