Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
debianDebianDEBIAN:ACC754C744CAE460F3873D50F545B0BA:A69CE
HistoryApr 10, 2009 - 9:38 p.m.

[Backports-security-announce] Security Update for openafs

2009-04-1021:38:35
lists.debian.org
7
JSON

Russ Allbery uploaded new packages for openafs (a distributed file system)
which fixed the following security problems:

CVE-2009-1251

An attacker with control of a file server or the ability to forge RX
packets may be able to execute arbitrary code in kernel mode on an
OpenAFS client, due to a vulnerability in XDR array decoding.

CVE-2009-1250

An attacker with control of a file server or the ability to forge RX
packets may crash OpenAFS clients because of wrongly handled error
return codes in the kernel module.

For the etch-backports distribution, the problem has been fixed in version
1.4.10+dfsg1-1~bpo40+1. There was no previous lenny backport of this
package, so the fixed packages available through normal Debian security
channels will work, but 1.4.10+dfsg1-1~bpo50+1 are also available (or will
be available soon) from lenny-backports so that the etch-backports version
wouldn't be higher than the lenny-backports version.

Upgrade instructions

If you don't use pinning
(http://backports.org/dokuwiki/doku.php?id=instructions) you have to
update the package manually via apt-get -t etch-backports install. You
should upgrade any of the following binary packages that you have
installed:

libopenafs-dev
libpam-openafs-kaserver
openafs-client
openafs-dbg
openafs-dbserver
openafs-doc
openafs-fileserver
openafs-kpasswd
openafs-krb5
openafs-modules-source

to keep versions consistent, but openafs-modules-source is the critical
package with the security fix.

We recommend to pin the backports repository to 200 so that new versions
of installed backports will be installed automatically.

Package: *
Pin: release a=lenny-backports
Pin-Priority: 200

Note that in order to apply this security update, you must rebuild the
OpenAFS kernel module. Be sure to upgrade openafs-modules-source, build a
new kernel module for your system following the instructions in
/usr/share/doc/openafs-client/README.modules.gz, and then either stop and
restart openafs-client or reboot the system to reload the kernel module.


Russ Allbery ([email protected]) <http://www.eyrie.org/~eagle/&gt;
Attachment:
pgpa2tak3jRUp.pgp
Description: PGP signature

Related

nessus 5
openvas 9
securityvulns 4
debian 2
osv 1
gentoo 2
cvelist 2
debiancve 2
ubuntucve 2
cve 2
prion 2
seebug 1
nessus
nessus
Mandriva Linux Security Advisory : openafs (MDVSA-2009:099-1)
2009-04-28 00:00:00
GLSA-201101-05 : OpenAFS: Arbitrary code execution
2011-01-17 00:00:00
Scientific Linux Security Update : openafs on SL3.x, SL4.x, SL5.x i386/x86_64
2012-08-01 00:00:00
openvas
openvas
Mandriva Security Advisory MDVSA-2009:099-1 (openafs)
2009-12-14 00:00:00
Mandriva Security Advisory MDVSA-2009:099-1 (openafs)
2009-12-14 00:00:00
Gentoo Security Advisory GLSA 201101-05 (OpenAFS)
2011-03-09 00:00:00
securityvulns
securityvulns
[ GLSA 201101-05 ] OpenAFS: Arbitrary code execution
2011-01-19 00:00:00
[SECURITY] [DSA 1768-1] New openafs packages potential code execution
2009-04-12 00:00:00
OpenAFS security vulnerabilities
2011-01-19 00:00:00
debian
debian
[SECURITY] [DSA 1768-1] New openafs packages potential code execution
2009-04-10 14:51:36
[Backports-security-announce] Security Update for openafs
2009-04-10 21:48:30
osv
osv
openafs - potential code execution
2009-04-10 00:00:00
gentoo
gentoo
OpenAFS: Arbitrary code execution
2011-01-16 00:00:00
OpenAFS: Multiple vulnerabilities
2014-04-07 00:00:00
cvelist
cvelist
CVE-2009-1250
2009-04-09 00:00:00
CVE-2009-1251
2009-04-09 00:00:00
debiancve
debiancve
CVE-2009-1251
2009-04-09 00:30:00
CVE-2009-1250
2009-04-09 00:30:00
ubuntucve
ubuntucve
CVE-2009-1251
2009-04-09 00:00:00
CVE-2009-1250
2009-04-09 00:00:00
cve
cve
CVE-2009-1251
2009-04-09 00:30:00
CVE-2009-1250
2009-04-09 00:30:00
prion
prion
Heap overflow
2009-04-09 00:30:00
Null pointer dereference
2009-04-09 00:30:00
seebug
seebug
OpenAFS出错代码远程拒绝服务漏洞
2009-04-10 00:00:00
JSON
Related for DEBIAN:ACC754C744CAE460F3873D50F545B0BA:A69CE
nessus5openvas9securityvulns4debian2osv1gentoo2cvelist2debiancve2ubuntucve2cve2prion2seebug1