8 matches found
Linux Distros Unpatched Vulnerability : CVE-2017-17432
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - OpenAFS 1.x before 1.6.22 does not properly validate Rx ack packets, which allows remote attackers to cause a denial of service system crash or application cras...
Mageia: Security Advisory (MGASA-2018-0065)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Updated openafs packages fixes security vulnerability
This update provides an update to openafs 1.6.22, fixing the following security issue: It was discovered that malformed jumbogram packets could result in denial of service against OpenAFS CVE-2017-17432. It also adds support for 4.14 series kernels...
Debian DLA-1213-1 : openafs security update
CVE-2017-17432 It was discovered that malformed jumbogram packets could result in denial of service against OpenAFS, an implementation of the Andrew distributed file system. For Debian 7 'Wheezy', these problems have been fixed in version 1.6.1-3+deb7u8. We recommend that you upgrade your openafs...
[SECURITY] [DSA 4067-1] openafs security update
------------------------------------------------------------------------- Debian Security Advisory DSA-4067-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff December 17, 2017 https://www.debian.org/security/faq -...
CVE-2017-17432
OpenAFS 1.x before 1.6.22 does not properly validate Rx ack packets, which allows remote attackers to cause a denial of service system crash or application crash via crafted fields, as demonstrated by an integer underflow and assertion failure for a small MTU value...
UBUNTU-CVE-2017-17432
OpenAFS 1.x before 1.6.22 does not properly validate Rx ack packets, which allows remote attackers to cause a denial of service system crash or application crash via crafted fields, as demonstrated by an integer underflow and assertion failure for a small MTU value...
CVE-2017-17432
OpenAFS 1.x prior to 1.6.22 is vulnerable: it does not properly validate Rx ack packets, leading to denial of service via crafted fields (integer underflow and assertion failure at small MTU). The issue is fixed in OpenAFS 1.6.22 (and via vendor advisories for Debian/Mageia/OpenAFS consumers). Af...