UbuntuUpdates.org

Package "openafs"

Name: openafs

Description:

This package is just an umbrella for a group of other packages, it has no description.
Description samples from packages in group:

  • AFS distributed file system runtime library (authentication)
  • AFS distributed file system runtime library (RPC layer)
  • AFS distributed file system runtime library (PAGs)
  • AFS distributed filesystem development libraries
Latest version: 1.6.1-1+ubuntu0.7
Release: precise (12.04)
Level: updates
Repository: universe

Links

All versions of this package
Bug fixes

List of files in package
Repository home page

Other versions of "openafs" in Precise

Repository Area Version
base universe 1.6.1-1
security universe 1.6.1-1+ubuntu0.7
backports universe 1.6.7-1ubuntu1~ubuntu12.04.1

Packages in group

Deleted packages are displayed in grey.


Changelog

Version: 1.6.1-1+ubuntu0.2 2013-07-25 08:07:05 UTC

  openafs (1.6.1-1+ubuntu0.2) precise-security; urgency=low

  * SECURITY UPDATE: Brute force DES attack permits compromise of AFS cell.
    vos -encrypt doesn't encrypt connection data.
    Buffer overflows which could cause a serverside denial of service.
    - openafs-sa-2013-001.patch: Fix fileserver buffer overflow when parsing
      client-supplied ACL entries and protect against client parsing of
      bad ACL entries. Thanks to Nickolai Zeldovich.
    - openafs-sa-2013-002.patch: Fix ptserver buffer overflow via integer
      overflow in the IdToName RPC. Thanks to Nickolai Zeldovich
    - 0001-Add-rxkad-server-hook-function-to-decrypt-more-types.patch
    - 0002-New-optional-rxkad-functionality-for-decypting-krb5-.patch
    - 0003-Integrate-keytab-based-decryption-into-afsconf_Build.patch
    - 0004-Derive-DES-fcrypt-session-key-from-other-key-types.patch
    - 0005-Move-akimpersonate-to-libauth.patch
    - 0006-Clean-up-akimpersonate-and-use-for-server-to-server.patch
    - 0007-auth-Do-not-always-fallback-to-noauth.patch
    - 0008-Avoid-calling-afsconf_GetLatestKey-directly.patch
    - 0009-Reload-rxkad.keytab-on-CellServDB-modification.patch
    - 0010-Add-support-for-deriving-DES-keys-to-klog.krb5.patch
    - 0011 skipped because it was a version bump
    - 0012-ubik-Fix-encryption-selection-in-ugen.patch
    - Thanks to Chaskiel Grundman, Alexander Chernyakhovsky, Ben Kaduk,
        Andrew Deason, and Michael Meffie for the above patch series.
    - swap-libs.patch: Resolve FTBFS with newer toolchains. Thanks to Anders
        Kaseorg.
    - OPENAFS-SA-2013-001
    - OPENAFS-SA-2013-002
    - OPENAFS-SA-2013-003
    - OPENAFS-SA-2013-004
    - CVE-2013-1794
    - CVE-2013-1795
    - CVE-2013-4134
    - CVE-2013-4135
    - LP: #1145560
    - LP: #1204195
 -- Luke Faraone <email address hidden> Tue, 23 Jul 2013 21:11:02 -0400
Source diff to previous version
1145560 OpenAFS Security Advisories 2013-001 and 2013-002
1204195 OpenAFS Security Advisories 2013-0003 and 2013-0004
CVE-2013-1794 Buffer overflows in OpenAFS fileserver
CVE-2013-1795 Buffer overflow in OpenAFS ptserver

Version: 1.6.1-1+ubuntu0.1 2013-03-11 16:06:55 UTC

  openafs (1.6.1-1+ubuntu0.1) precise-proposed; urgency=low

  * Apply upstream deltas for Linux 3.5 (Closes: #685973)
    (LP: #1015925):
    - [2b33384] Linux 3.4: replace end_writeback with clear_inode
    - [5227148] Linux 3.5: encode_fh API change
 -- Anders Kaseorg <email address hidden> Thu, 28 Feb 2013 01:14:13 -0500
1015925 openafs: Support quantal\u2019s kernel 3.5
685973 Does not build with kernel 3.5: end_writeback is now clear_inode - Debian Bug report logs


About   -   Send Feedback to @ubuntu_updates