4 matches found
Gentoo Security Advisory GLSA 201404-05
Gentoo Linux Local Security Checks GLSA 201404-05 SPDX-FileCopyrightText: 2015 Eero Volotinen Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later ifdescription...
FreeBSD : net/openafs -- buffer overflow (0bf376b7-cc6b-11e2-a424-14dae938ec40)
Nickolai Zeldovich reports : An attacker with the ability to manipulate AFS directory ACLs may crash the fileserver hosting that volume. In addition, once a corrupt ACL is placed on a fileserver, its existence may crash client utilities manipulating ACLs on that server. %NASLMINLEVEL 70300 C...
CVE-2013-1794
OpenAFS vulnerability CVE-2013-1794: a buffer overflow in certain client utilities before version 1.6.2 allows remote authenticated users to crash the fileserver or potentially execute code via a long fileserver ACL entry. Several connected advisories cite this CVE and indicate upgrades are neede...
Scientific Linux Security Update : openafs on SL5.x SL6.x i386/x86_64 (20130304)
By carefully crafting an ACL entry an attacker may overflow fixed length buffers within the OpenAFS fileserver, crashing the fileserver, and potentially permitting the execution of arbitrary code. To perform the exploit, the attacker must already have permissions to create ACLs on the fileserver ...