[Bug 370458] Re: Merge openafs 1.4.10+dfsg1-1 from Deban

Launchpad Bug Tracker 370458 at bugs.launchpad.net
Fri May 1 19:30:08 UTC 2009 

This bug was fixed in the package openafs - 1.4.10+dfsg1-1+ubuntu1

---------------
openafs (1.4.10+dfsg1-1+ubuntu1) karmic; urgency=low

  * Merge from Debian unstable (LP: #370458), remaining changes:
    - Reenable DKMS support, which was commented out of 1.4.8.dfsg1-1.
  * Make openafs-modules-dkms depend on dkms.  (LP: #368471)
  * Parse $(VERSION) and $(DEBVERS) from debian/changelog.
    (LP: #364426)

openafs (1.4.10+dfsg1-1) unstable; urgency=high

  * New upstream release.
    - OPENAFS-SA-2009-001: Avoid a potential kernel memory overrun if more
      items than requested are returned from an InlineBulk or BulkStatus
      message.  (CVE-2009-1251)
    - OPENAFS-SA-2009-002: Avoid converting negative errors into invalid
      kernel memory pointers.  (CVE-2009-1250)
    - Preliminary support for 2.6.30 kernels.
    - Dynamic vcache allocation support to deal with inotify vcache
      pinning.
    - Do appropriate locking for CellServDB in /proc.
    - Use +dfsg instead of .dfsg for saner version sorting.
  * Debian's 2.6.29 packages no longer include symlinks from the
    architecture-specific header tree to the common header tree and
    instead overlay both header trees using kbuild.  Change the Autoconf
    probes to always use kbuild and generate stub headers in the paths
    that OpenAFS expects that include the linux headers.  Patch from Aaron
    M. Ucko.  (Closes: #521745)
  * Build PIC versions of libafsauthent and libafsrpc and install them in
    libopenafs-dev for use when AFS code should be embedded into shared
    libraries.  Patch from Garrett Wollman.
  * Update CellServDB to 2008-11-07 version.  (Closes: #522451)
  * Update debian/watch for +dfsg naming instead of .dfsg.
  * Update standards version to 3.8.1 (no changes required).
  * Translation updates:
    - Japanese, thanks Hideki Yamane.  (Closes: #521518)

 -- Anders Kaseorg <andersk at mit.edu>   Wed, 29 Apr 2009 02:31:47 -0400

** Changed in: openafs (Ubuntu)
       Status: New => Fix Released

** CVE added: http://www.cve.mitre.org/cgi-
bin/cvename.cgi?name=2009-1250

** CVE added: http://www.cve.mitre.org/cgi-
bin/cvename.cgi?name=2009-1251

-- 
Merge openafs 1.4.10+dfsg1-1 from Deban
https://bugs.launchpad.net/bugs/370458
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.

-- 
ubuntu-bugs mailing list
ubuntu-bugs at lists.ubuntu.com
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs

More information about the universe-bugs mailing list