[Bug 356861] Re: OpenAFS Security Advisories 2009-001 and 2009-002

Launchpad Bug Tracker Mon, 20 Apr 2009 13:46:02 -0700

This bug was fixed in the package openafs - 1.4.7.dfsg1-6+ubuntu0.1

---------------
openafs (1.4.7.dfsg1-6+ubuntu0.1) intrepid-security; urgency=low


  * Apply upstream security patches from 1.4.9 (LP: #356861):
    - OPENAFS-SA-2009-001: Avoid a potential kernel memory overrun if more
      items than requested are returned from an InlineBulk or BulkStatus
      message.  (CVE-2009-1251)
    - OPENAFS-SA-2009-002: Avoid converting negative errors into invalid
      kernel memory pointers.  (CVE-2009-1250)

 -- Evan Broder <[email protected]>   Thu, 16 Apr 2009 14:31:15 -0400

** Changed in: openafs (Ubuntu Intrepid)
       Status: Fix Committed => Fix Released

-- 
OpenAFS Security Advisories 2009-001 and 2009-002
https://bugs.launchpad.net/bugs/356861
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.

-- 
ubuntu-bugs mailing list
[email protected]
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs

[Bug 356861] Re: OpenAFS Security Advisories 2009-001 and 2009-002

Reply via email to