6 matches found
Updated openafs packages fix security vulnerabilies
Updated openafs packages fix security vulnerabilities: Buffer overflow in the GetStatistics64 remote procedure call RPC in OpenAFS before 1.6.7 allows remote attackers to cause a denial of service crash via a crafted statsVersion argument CVE-2014-0159. OpenAFS before 1.6.7 delays the listen thre...
OpenAFS GetStatistics64 RPC远程拒绝服务漏洞
Bugtraq ID:66776 CVE ID:CVE-2014-0159 OpenAFS是一款开放源代码的分布式文件系统。 OpenAFS GetStatistics64 RPC存在错误,允许攻击者利用漏洞发送特殊的请求触发缓冲区溢出和使应用程序崩溃。 0 OpenAFS 1.4.8 - 1.6.6 OpenAFS 1.6.7版本已修复该漏洞,建议用户下载使用: http://openafs.org/...
CVE-2014-0159
Buffer overflow in the GetStatistics64 remote procedure call RPC in OpenAFS 1.4.8 before 1.6.7 allows remote attackers to cause a denial of service crash via a crafted statsVersion argument...
CVE-2014-0159
CVE-2014-0159 affects OpenAFS: the GetStatistics64 RPC in OpenAFS 1.4.8 before 1.6.7 is vulnerable to a buffer overflow that can cause a remote denial of service (crash). Connected advisories confirm the issue exists in OpenAFS before 1.6.7 and indicate remediation by upgrading to newer OpenAFS r...
FreeBSD : openafs -- Denial of Service (c0c31b27-bff3-11e3-9d09-000c2980a9f3)
The OpenAFS development team reports : An attacker with the ability to connect to an OpenAFS fileserver can trigger a buffer overflow, crashing the server. The buffer overflow can be triggered by sending an unauthenticated request for file server statistical information. Clients are not affected...
[SECURITY] [DSA 2899-1] openafs security update
------------------------------------------------------------------------- Debian Security Advisory DSA-2899-1 [email protected] http://www.debian.org/security/ Thijs Kinkhorst April 09, 2014 http://www.debian.org/security/faq -...