2 matches found
Updated openafs packages fix security vulnerabilies
Updated openafs packages fix security vulnerabilities: Buffer overflow in the GetStatistics64 remote procedure call RPC in OpenAFS before 1.6.7 allows remote attackers to cause a denial of service crash via a crafted statsVersion argument CVE-2014-0159. OpenAFS before 1.6.7 delays the listen thre...
CVE-2014-4044
OpenAFS 1.6.8 contains a vulnerability (CVE-2014-4044) where host structure fields are not cleared, enabling remote attackers to cause a DoS via TMAY-related vectors (uninitialized memory access leading to crash). The OpenVAS/Mageia OSV entries corroborate the issue and provide context. Remediati...