Lucene search

GoogleOSV:DSA-2638-1

HistoryMar 04, 2013 - 12:00 a.m.

openafs - buffer overflow

2013-03-0400:00:00

Google

osv.dev

6.5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:S/C:P/I:P/A:P

JSON

Multiple buffer overflows were discovered in OpenAFS, the implementation
of the distributed filesystem AFS, which might result in denial of
service or the execution of arbitrary code. Further information is
available at
<http://www.openafs.org/security>.

For the stable distribution (squeeze), this problem has been fixed in
version 1.4.12.1+dfsg-4+squeeze1.

For the unstable distribution (sid), this problem has been fixed in
version 1.6.1-3.

We recommend that you upgrade your openafs packages.

CPENameOperatorVersion
openafseq1.4.12.1+dfsg-4~bpo50+1
openafseq1.4.12.1+dfsg-3
openafseq1.4.12.1+dfsg-4

Name	Operator	Version
openafs	eq	1.4.12.1+dfsg-4~bpo50+1
openafs	eq	1.4.12.1+dfsg-3
openafs	eq	1.4.12.1+dfsg-4

References

www.debian.org/security/2013/dsa-2638

6.5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:S/C:P/I:P/A:P

JSON

Related for OSV:DSA-2638-1