Gentoo Linux Security Advisory 201404-5 - Multiple vulnerabilities have been found in OpenAFS, worst of which can allow attackers to execute arbitrary code. Versions less than 1.6.5 are affected.
bdd4ed6538ff78bf057d8dfb17d273d308bbeb4af917a10d1c972e171f1ca870Gentoo Linux Security Advisory 201101-5 - The cache manager of OpenAFS contains several bugs resulting in remote execution of arbitrary code. Versions less than 1.4.9 are affected.
9d87a7f902252e76bacdfa5d0e92da4a8229407644d9ad6441121493e1f5af12Mandriva Linux Security Advisory 2009-099 - The cache manager in the client in OpenAFS 1.0 through 1.4.8 and 1.5.0 through 1.5.58 on Linux allows remote attackers to cause a denial of service (system crash) via an RX response with a large error-code value that is interpreted as a pointer and dereferenced, related to use of the ERR_PTR macro. Heap-based buffer overflow in the cache manager in the client in OpenAFS 1.0 through 1.4.8 and 1.5.0 through 1.5.58 on Unix platforms allows remote attackers to cause a denial of service (system crash) or possibly execute arbitrary code via an RX response containing more data than specified in a request, related to use of XDR arrays. The updated packages have been patched to correct these issues. Packages for 2008.0 are being provided due to extended support for Corporate products.
c30548b7bc0fa8ba870b95cdc42b8eff41200e88943fe0c170401ff661cf3e77Mandriva Linux Security Advisory 2009-099 - The cache manager in the client in OpenAFS 1.0 through 1.4.8 and 1.5.0 through 1.5.58 on Linux allows remote attackers to cause a denial of service (system crash) via an RX response with a large error-code value that is interpreted as a pointer and dereferenced, related to use of the ERR_PTR macro. Heap-based buffer overflow in the cache manager in the client in OpenAFS 1.0 through 1.4.8 and 1.5.0 through 1.5.58 on Unix platforms allows remote attackers to cause a denial of service (system crash) or possibly execute arbitrary code via an RX response containing more data than specified in a request, related to use of XDR arrays. The updated packages have been patched to correct these issues.
2e569807acb2c17926c793d01b802bde70b62b12ff6fcf105af9193ac070266bDebian Security Advisory 1768-1 - Two vulnerabilities were discovered in the client part of OpenAFS, a distributed file system.
ec6d39f64def46cde362948947c87b5b86ebdf51b0a8e50eb3f144440cf13645
© 2024 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed