5 matches found
Debian dla-4168 : libafsauthent2 - security update
The remote Debian 11 host has packages installed that are affected by a vulnerability as referenced in the dla-4168 advisory. - ------------------------------------------------------------------------- Debian LTS Advisory DLA-4168-2 [email protected] https://www.debian.org/lts/security/...
Updated openafs packages fix security vulnerabilities
A local user can bypass the OpenAFS PAG Process Authentication Group throttling mechanism in Unix client. CVE-2024-10394 An authenticated user can provide a malformed ACL to the fileserver's StoreACL RPC, causing the fileserver to crash. CVE-2024-10396 A malicious server can crash the OpenAFS cac...
MGASA-2025-0013 Updated openafs packages fix security vulnerabilities
A local user can bypass the OpenAFS PAG Process Authentication Group throttling mechanism in Unix client. CVE-2024-10394 An authenticated user can provide a malformed ACL to the fileserver's StoreACL RPC, causing the fileserver to crash. CVE-2024-10396 A malicious server can crash the OpenAFS cac...
[SECURITY] [DSA 5842-1] openafs security update
------------------------------------------------------------------------- Debian Security Advisory DSA-5842-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso January 11, 2025 https://www.debian.org/security/faq -...
Vulnerabilities of the Gentoo Linux operating system, which allow a remote attacker to compromise the confidentiality, integrity, and accessibility of protected information
The multiple vulnerabilities in the openafs package up to version 1.4.9 of the Gentoo Linux operating system can lead to violations of confidentiality, integrity, and accessibility of protected information. These vulnerabilities can be exploited remotely...