testing openafs for Wheezy LTS
Hi everybody,
unfortunately a new CVE for openafs appeared and I uploaded another
version 1.6.1-3+deb7u6 of openafs to:
https://people.debian.org/~alteholz/packages/wheezy-lts/openafs/amd64/
https://people.debian.org/~alteholz/packages/wheezy-lts/openafs/i386/
Three CVEs will be fixed in this version:
* CVE-2015-8312: afs: pioctl kernel memory overrun
* CVE-2016-2860: group creation by foreign users
* CVE-2016-4536: leaking stack data onto the wire in the clear
Please give it a try and tell me about any problems you met.
Thanks!
Thorsten
Reply to: