Bug#743984: kfreebsd-9: CVE-2014-1453: nfsserver denial of service

2014-04-14 Thread Moritz Mühlenhoff
On Wed, Apr 09, 2014 at 02:32:54AM +0100, Steven Chamberlain wrote: > Dear Security Team, > [I've also Cc'd Aurelien, who dealt with previous kfreebsd DSAs] FYI, Aurelien is also on the t...@security.debian.org alias, since he's dealing with the kfreebsd issues. Cheers, Moritz -- To UN

Bug#743984: kfreebsd-9: CVE-2014-1453: nfsserver denial of service

2014-04-08 Thread Steven Chamberlain
Dear Security Team, [I've also Cc'd Aurelien, who dealt with previous kfreebsd DSAs] Please could we fix #743984 / CVE-2014-1453 in wheezy kfreebsd-9, with the attached debdiff? I'm currently building and testing it. We don't likely want to fix this in sid because kfreebsd-9 is planned to be rem

Processed: Re: Bug#743984: kfreebsd-9: CVE-2014-1453: nfsserver denial of service

2014-04-08 Thread Debian Bug Tracking System
Processing commands for cont...@bugs.debian.org: > clone 743984 -1 Bug #743984 [src:kfreebsd-9] kfreebsd-9: CVE-2014-1453: nfsserver denial of service Bug 743984 cloned as bug 743988 > retitle -1 kfreebsd-10: CVE-2014-1453: nfsserver denial of service Bug #743988 [src:kfreebsd-9] kfreebsd-9: CVE-

Bug#743984: kfreebsd-9: CVE-2014-1453: nfsserver denial of service

2014-04-08 Thread Steven Chamberlain
Package: src:kfreebsd-9 Version: 9.0-10+deb70.6 Severity: grave Tags: security upstream Control: found -1 kfreebsd-9/9.0-10 The new NFS server implementation, used by default in the kernel of FreeBSD 9.0 and later, is vulnerable to denial of service (deadlock) by authorised NFS clients. http://se