Re: [SRM] DoS fix for openafs in stable and oldstable
"Adam D. Barratt" <adam@adam-barratt.org.uk> writes:
> On Wed, 2009-07-15 at 18:08 -0700, Russ Allbery wrote:
>> The latest release of OpenAFS has a fix for a possible DoS attack
>> against the OpenAFS client module. This is an additional fix for the
>> problem fixed in CVE-2009-1250. I think it's too minor to warrant a
>> DSA (and I haven't gotten any reply from two messages to the security
>> team about it), but I'd like to fix it in the stable and oldstable
>> releases. The fix went into unstable with 1.4.11~pre3+dfsg-1.
>> Here is the patch against lenny. The patch against etch is identical.
>> Do I have approval to upload to stable-proposed-updates and
>> oldstable-proposed-updates?
> Please go ahead.
Uploaded, thanks.
--
Russ Allbery (rra@debian.org) <http://www.eyrie.org/~eagle/>
Reply to: