George Orwell wrote:


>> However, I found a privilege escalation vulnerability from version 4.3a
>> being carried over, so I heavily recommend to avoid using TrueCrypt until
>> it's fixed.
>
> Actually, on Linux I think this is fixed. You have to authenticate as
> the "owner" of a volume before giving any system passwords necessary
> for mounting that volume. It use to be the other way around.


Your speculation is going into the wrong direction. The undisclosed
privilege escalation I'm talking about requires only to run a specially
crafted program with non-root privileges by a logged-on user (which might
potentially be compromised). The result is that the program gains root
privileges.

Indeed, the attack works quite well if the malicious program uses
TrueCrypt's official code to create a fresh file container volume without
caring for its content.