[Bug 356861] Re: OpenAFS Security Advisories 2009-001 and 2009-002
Launchpad Bug Tracker
356861 at bugs.launchpad.net
Mon Apr 20 20:37:01 UTC 2009
This bug was fixed in the package openafs - 1.4.7.dfsg1-6+ubuntu0.1
---------------
openafs (1.4.7.dfsg1-6+ubuntu0.1) intrepid-security; urgency=low
* Apply upstream security patches from 1.4.9 (LP: #356861):
- OPENAFS-SA-2009-001: Avoid a potential kernel memory overrun if more
items than requested are returned from an InlineBulk or BulkStatus
message. (CVE-2009-1251)
- OPENAFS-SA-2009-002: Avoid converting negative errors into invalid
kernel memory pointers. (CVE-2009-1250)
-- Evan Broder <broder at mit.edu> Thu, 16 Apr 2009 14:31:15 -0400
** Changed in: openafs (Ubuntu Intrepid)
Status: Fix Committed => Fix Released
--
OpenAFS Security Advisories 2009-001 and 2009-002
https://bugs.launchpad.net/bugs/356861
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
--
ubuntu-bugs mailing list
ubuntu-bugs at lists.ubuntu.com
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
More information about the universe-bugs
mailing list