Package "libpam-openafs-kaserver"
Name: |
libpam-openafs-kaserver
|
Description: |
AFS distributed filesystem kaserver PAM module
|
Latest version: |
1.6.1-1+ubuntu0.7 |
Release: |
precise (12.04) |
Level: |
updates |
Repository: |
universe |
Head package: |
openafs |
Homepage: |
http://www.openafs.org/ |
Links
Download "libpam-openafs-kaserver"
Other versions of "libpam-openafs-kaserver" in Precise
Changelog
openafs (1.6.1-1+ubuntu0.2) precise-security; urgency=low
* SECURITY UPDATE: Brute force DES attack permits compromise of AFS cell.
vos -encrypt doesn't encrypt connection data.
Buffer overflows which could cause a serverside denial of service.
- openafs-sa-2013-001.patch: Fix fileserver buffer overflow when parsing
client-supplied ACL entries and protect against client parsing of
bad ACL entries. Thanks to Nickolai Zeldovich.
- openafs-sa-2013-002.patch: Fix ptserver buffer overflow via integer
overflow in the IdToName RPC. Thanks to Nickolai Zeldovich
- 0001-Add-rxkad-server-hook-function-to-decrypt-more-types.patch
- 0002-New-optional-rxkad-functionality-for-decypting-krb5-.patch
- 0003-Integrate-keytab-based-decryption-into-afsconf_Build.patch
- 0004-Derive-DES-fcrypt-session-key-from-other-key-types.patch
- 0005-Move-akimpersonate-to-libauth.patch
- 0006-Clean-up-akimpersonate-and-use-for-server-to-server.patch
- 0007-auth-Do-not-always-fallback-to-noauth.patch
- 0008-Avoid-calling-afsconf_GetLatestKey-directly.patch
- 0009-Reload-rxkad.keytab-on-CellServDB-modification.patch
- 0010-Add-support-for-deriving-DES-keys-to-klog.krb5.patch
- 0011 skipped because it was a version bump
- 0012-ubik-Fix-encryption-selection-in-ugen.patch
- Thanks to Chaskiel Grundman, Alexander Chernyakhovsky, Ben Kaduk,
Andrew Deason, and Michael Meffie for the above patch series.
- swap-libs.patch: Resolve FTBFS with newer toolchains. Thanks to Anders
Kaseorg.
- OPENAFS-SA-2013-001
- OPENAFS-SA-2013-002
- OPENAFS-SA-2013-003
- OPENAFS-SA-2013-004
- CVE-2013-1794
- CVE-2013-1795
- CVE-2013-4134
- CVE-2013-4135
- LP: #1145560
- LP: #1204195
-- Luke Faraone <email address hidden> Tue, 23 Jul 2013 21:11:02 -0400
|
Source diff to previous version |
1145560 |
OpenAFS Security Advisories 2013-001 and 2013-002 |
1204195 |
OpenAFS Security Advisories 2013-0003 and 2013-0004 |
CVE-2013-1794 |
Buffer overflows in OpenAFS fileserver |
CVE-2013-1795 |
Buffer overflow in OpenAFS ptserver |
|
openafs (1.6.1-1+ubuntu0.1) precise-proposed; urgency=low
* Apply upstream deltas for Linux 3.5 (Closes: #685973)
(LP: #1015925):
- [2b33384] Linux 3.4: replace end_writeback with clear_inode
- [5227148] Linux 3.5: encode_fh API change
-- Anders Kaseorg <email address hidden> Thu, 28 Feb 2013 01:14:13 -0500
|
1015925 |
openafs: Support quantal\u2019s kernel 3.5 |
685973 |
Does not build with kernel 3.5: end_writeback is now clear_inode - Debian Bug report logs |
|
About
-
Send Feedback to @ubuntu_updates