On Thu, Dec 20, 2007 at 05:00:14PM -0500, Derrick J Brashear wrote: > OpenAFS Security Advisory 2007-003 > > Topic: denial of service in OpenAFS fileserver > > Issued: 20-Dev-2007 > Last Update: 21-Dec-2007 > Affected: OpenAFS 1.3.50 - 1.4.5, OpenAFS 1.5.0 - 1.5.27 > > A user with network access can attack a fileserver via a race condition and > cause it to crash.
MITRE has just assigned CVE-2007-6599 for this bug. See http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-6599 and http://cve.mitre.org/ for more info. It would be nice if you could add this CVE identifier to your web page about this issue, and possibly mention it in the OpenAFS changelog. It helps end users and distributors to confirm that they're all talking about the same bug. Thanks. noah -- Noah Meyerhans System Administrator MIT Computer Science and Artificial Intelligence Laboratory
signature.asc
Description: Digital signature
