[Bug 1582077] Re: Sync openafs 1.6.17-2 (universe) from Debian unstable (main)

Anders Kaseorg andersk at mit.edu
Wed May 18 02:19:38 UTC 2016 

Which is bug 1574982 in GCC.

I’ve tested that the same problem occurs with openafs-modules-dkms
1.6.15-1ubuntu1 on yakkety, so this is not an openafs regression.

-- 
You received this bug notification because you are a member of Ubuntu
Sponsors Team, which is subscribed to the bug report.
https://bugs.launchpad.net/bugs/1582077

Title:
  Sync openafs 1.6.17-2 (universe) from Debian unstable (main)

Status in openafs package in Ubuntu:
  Fix Committed

Bug description:
  Please sync openafs 1.6.17-2 (universe) from Debian unstable (main)

  Explanation of the Ubuntu delta and why it can be dropped:
    * debian/patches/1000-follow-changes-to-key-payload-accessors.patch:
     - follow mainline changes to key payload storage and access.
       (LP: #1538520)
    * debian/patches/1001-follow-changes-to-locks_lock_inode_wait.patch:
     - follow mainline changes to locking switching to
       locks_lock_inode_wait() (LP: #1538520)

  All needed patches are in Debian.

  Changelog entries since current yakkety version 1.6.15-1ubuntu1:

  openafs (1.6.17-2) unstable; urgency=high

    * debian/rules: Fix FTBFS when built with dpkg-buildpackage -A.
      (Closes: #806088)

   -- Anders Kaseorg <andersk at mit.edu>  Thu, 17 Mar 2016 04:48:16 -0400

  openafs (1.6.17-1) unstable; urgency=high

    * New upstream release 1.6.16.
      - Fix bosserver crashes related to fixed-sized buffers.
      - Fix potential denial of service issue in pioctl logic
        (CVE-2015-8312).
      - Provide a new vos remaddrs subcommand for removing server entries.
      - Allow pioctls to work with read-only /proc (e.g. Docker containers).
    * New upstream security release 1.6.17.
      - Prevent users in foreign Kerberos realms from creating groups as if
        they were administrators (CVE-2016-2860).
      - Fix an information leak of uninitialized memory over the network.
      - Fix a crash when the AFS root volume is not found.
    * debian/patches/Linux-4.4-key_payload-has-no-member-value.patch,
      debian/patches/Linux-4.4-Use-locks_lock_file_wait.patch,
      debian/patches/Linux-4.4-Do-not-use-splice.patch:
      Add upstream patches for current Linux kernel support.  (Closes: #815521)

   -- Anders Kaseorg <andersk at mit.edu>  Thu, 17 Mar 2016 00:55:42 -0400

To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/openafs/+bug/1582077/+subscriptions

More information about the Ubuntu-sponsors mailing list