This bug was fixed in the package openafs - 1.8.2-1 Sponsored for Anders Kaseorg (andersk)
--------------- openafs (1.8.2-1) unstable; urgency=high * New upstream release 1.8.1.1: - Support Linux 4.18. * New upstream security release 1.8.2 (Closes: #908616): - Fix OPENAFS-SA-2018-001: unauthenticated volume operations via butc (CVE-2018-16947). - Fix OPENAFS-SA-2018-002: information leakage in RPC output variables (CVE-2018-16948). - Fix OPENAFS-SA-2018-003: denial of service due to excess resource consumption (CVE-2018-16949). -- Anders Kaseorg <ande...@mit.edu> Tue, 11 Sep 2018 22:53:43 -0700 ** Changed in: openafs (Ubuntu) Status: New => Fix Released -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1792234 Title: Sync openafs 1.8.2-1 (universe) from Debian unstable (main) To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/openafs/+bug/1792234/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs