This bug was fixed in the package openafs - 1.6.1-1+ubuntu0.6
---------------
openafs (1.6.1-1+ubuntu0.6) precise-security; urgency=low
* SECURITY UPDATE: Merge security patches from Debian git master
(LP: #1481373)
- CVE-2015-3282.patch: vos leaks stack data onto the wire in the clear
when creating vldb entries
- CVE-2015-3283.patch: bos commands can be spoofed, including some which
alter server state
- CVE-2015-3284.patch: pioctls leak kernel memory contents
- CVE-2015-3285.patch: kernel pioctl support for OSD command passing can
trigger a panic
- CVE-2015-3287.patch: Buffer overflow in OpenAFS vlserver
-- Patrik Lundin <[email protected]> Fri, 07 Aug 2015 15:27:00 +0200
** Changed in: openafs (Ubuntu)
Status: New => Fix Released
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1481373
Title:
Security bugs "DSA-3320-1 openafs -- security update"
To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/openafs/+bug/1481373/+subscriptions
--
ubuntu-bugs mailing list
[email protected]
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
