Re: [SECURITY] [DSA 1458-1] New openafs packages fix denial of service vulnerability
On Thu, 2008-01-10 at 17:30 -0500, Noah Meyerhans wrote:
> On Thu, Jan 10, 2008 at 05:29:18PM -0500, Thomas Bushnell BSG wrote:
> > This is not sufficient advice for how to upgrade. Merely installing a
> > new version of openafs-modules-source will not build it. Some form of
> > m-a invocation as well will be necessary.
>
> Except that the security flaw is in the fileserver, which does not
> involve the kernel module at all and runs fine even without it
> installed.
Surely. But then the security update shouldn't mention unaffected
packages!
Thomas
Reply to: