Re: [SRM] DoS fix for openafs in stable and oldstable
On Wed, 2009-07-15 at 18:08 -0700, Russ Allbery wrote:
> The latest release of OpenAFS has a fix for a possible DoS attack against
> the OpenAFS client module. This is an additional fix for the problem
> fixed in CVE-2009-1250. I think it's too minor to warrant a DSA (and I
> haven't gotten any reply from two messages to the security team about it),
> but I'd like to fix it in the stable and oldstable releases. The fix went
> into unstable with 1.4.11~pre3+dfsg-1.
>
> Here is the patch against lenny. The patch against etch is identical. Do
> I have approval to upload to stable-proposed-updates and
> oldstable-proposed-updates?
Please go ahead.
Regards,
Adam
Reply to: