[ubuntu/lucid-security] openafs 1.4.12+dfsg-3+ubuntu0.4 (Accepted)
Seth Arnold
seth.arnold at canonical.com
Fri Apr 11 04:04:55 UTC 2014
openafs (1.4.12+dfsg-3+ubuntu0.4) lucid-security; urgency=low
* SECURITY UPDATE: Merge security patches from Debian Squeeze:
- OPENAFS-SA-2014-001: Fix potential buffer overflow in the
fileserver. (CVE-2014-0159)
src/viced/afsfileprocs.c: Check STATS64_VERSION
- Fix a potential DoS attack against Rx servers by delaying connection
aborts instead of responding immediately.
src/rx/rx.c: add rxi_SendConnectionAbortLater(), callers
- Debian patches and above descriptions from rra at debian.org.
- LP: #1305807
Date: 2014-04-10 23:16:38.737429+00:00
Changed-By: Patrik Lundin <patrik.lundin at su.se>
Signed-By: Seth Arnold <seth.arnold at canonical.com>
https://launchpad.net/ubuntu/lucid/+source/openafs/1.4.12+dfsg-3+ubuntu0.4
-------------- next part --------------
Sorry, changesfile not available.
More information about the Lucid-changes
mailing list