Accepted openafs 1.6.1-3+deb7u3 (source amd64 all) into oldstable-proposed-updates->oldstable-new, oldstable-proposed-updates
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512
Format: 1.8
Date: Thu, 30 Jul 2015 11:46:33 +0200
Source: openafs
Binary: openafs-client openafs-fuse openafs-kpasswd openafs-fileserver openafs-dbserver openafs-doc openafs-krb5 libkopenafs1 libafsauthent1 libafsrpc1 libopenafs-dev openafs-modules-source openafs-modules-dkms libpam-openafs-kaserver openafs-dbg
Architecture: source amd64 all
Version: 1.6.1-3+deb7u3
Distribution: wheezy-security
Urgency: high
Maintainer: Russ Allbery <rra@debian.org>
Changed-By: Sebastien Delafond <seb@debian.org>
Description:
libafsauthent1 - AFS distributed file system runtime library (authentication)
libafsrpc1 - AFS distributed file system runtime library (RPC layer)
libkopenafs1 - AFS distributed file system runtime library (PAGs)
libopenafs-dev - AFS distributed filesystem development libraries
libpam-openafs-kaserver - AFS distributed filesystem kaserver PAM module
openafs-client - AFS distributed filesystem client support
openafs-dbg - AFS distributed filesystem debugging information
openafs-dbserver - AFS distributed filesystem database server
openafs-doc - AFS distributed filesystem documentation
openafs-fileserver - AFS distributed filesystem file server
openafs-fuse - AFS distributed file system experimental FUSE client
openafs-kpasswd - AFS distributed filesystem old password changing
openafs-krb5 - AFS distributed filesystem Kerberos 5 integration
openafs-modules-dkms - AFS distributed filesystem kernel module DKMS source
openafs-modules-source - AFS distributed filesystem kernel module source
Changes:
openafs (1.6.1-3+deb7u3) wheezy-security; urgency=high
.
* Apply upstream security patches from the 1.6.13 release (thanks to
Benjamin Kaduk <kaduk@mit.edu> for providing the patches):
- OPENAFS-SA-2015-001 (CVE-2015-3282): vos leaks stack data onto the wire when creating
vldb entries
- OPENAFS-SA-2015-002 (CVE-2015-3283): bos commands can be spoofed, including some
which alter server state
- OPENAFS-SA-2015-003 (CVE-2015-3284): pioctls leak kernel memory contents
- OPENAFS-SA-2015-004 (CVE-2015-3285): kernel pioctl support for OSD command parsing
can trigger a panic
- OPENAFS-SA-2015-006 (CVE-2015-3287): Buffer overflow in OpenAFS vlserver
* The patch for OPENAFS-SA-2015-005 is not applied, since that
vulnerability is limited to the Solaris kernel module
Checksums-Sha1:
f75741d61d83f5c66e3205d699e2a17db5eb2c68 2527 openafs_1.6.1-3+deb7u3.dsc
11160bf0696a7106451fa6c29679133e865121b3 187467 openafs_1.6.1-3+deb7u3.debian.tar.gz
0136c5a230fce2d59f972503f25c01a3ab284d0d 3899908 openafs-client_1.6.1-3+deb7u3_amd64.deb
c96af694b47fd03c22ca1a613a716552fb0d5be7 324480 openafs-fuse_1.6.1-3+deb7u3_amd64.deb
990bd8d3f2ea542f2a8c41776fc98c870b6732d1 319726 openafs-kpasswd_1.6.1-3+deb7u3_amd64.deb
56c70c3cc0125f60da063c9ad0a4143a84e0e103 3107400 openafs-fileserver_1.6.1-3+deb7u3_amd64.deb
75827c4140fb25eafb992dae1eb3f9748fe2ac89 760678 openafs-dbserver_1.6.1-3+deb7u3_amd64.deb
2ad6f4c038d276fb091405ff8de1a828b2d91389 4642036 openafs-doc_1.6.1-3+deb7u3_all.deb
c21059fb892f10c6628e0b9c46725c2a023dbed4 385030 openafs-krb5_1.6.1-3+deb7u3_amd64.deb
0532c92d49191ca1a645c1a37bb0a15790c12c33 81744 libkopenafs1_1.6.1-3+deb7u3_amd64.deb
c453e29687811d01c46deb6873de64afc14d3c33 158998 libafsauthent1_1.6.1-3+deb7u3_amd64.deb
a054c3f1d4fddca8ae07ac45452bdbe4e26ac353 214116 libafsrpc1_1.6.1-3+deb7u3_amd64.deb
596e65c0ae683d9fefa8a7736ffcb84d94d68fb1 2892536 libopenafs-dev_1.6.1-3+deb7u3_amd64.deb
2effe465581398a0c8fd7b2facc44ab9e0db52f6 1117372 openafs-modules-source_1.6.1-3+deb7u3_all.deb
16840aa5e0119a0d8fcf704a739407cd99db7af0 1359146 openafs-modules-dkms_1.6.1-3+deb7u3_all.deb
f0dd6a25753693f79d0d8705d7a4d599edb92ec9 359306 libpam-openafs-kaserver_1.6.1-3+deb7u3_amd64.deb
82c514f80e1a4c83f6a83b3bc0f28245f6e1ee85 21542402 openafs-dbg_1.6.1-3+deb7u3_amd64.deb
Checksums-Sha256:
19e7a7e56be991cc562aec3a3609648677f186997b2a74f41b017b141775813a 2527 openafs_1.6.1-3+deb7u3.dsc
9aa78da45f13309b120baa04e8730b38bdaa941f597f7dfc21dbc961954e927e 187467 openafs_1.6.1-3+deb7u3.debian.tar.gz
53a52023cb093f5544b1c7a19aeb862c6e5acdf722be949ec50c1a2174e5ebea 3899908 openafs-client_1.6.1-3+deb7u3_amd64.deb
2e8d6780cebe9cd3d551eb596cdadfbba51f4907ffa9827cde6fc22096e2cfb7 324480 openafs-fuse_1.6.1-3+deb7u3_amd64.deb
84754d13171fd62a553ec90e9c5a4493ae1c5989a5a3b7a03e242801362266c1 319726 openafs-kpasswd_1.6.1-3+deb7u3_amd64.deb
f9b5371a149fdbda00e0f89251b0eab77b9d0db450ecde6f408087154d741ee8 3107400 openafs-fileserver_1.6.1-3+deb7u3_amd64.deb
08c1c649e77eb6fbb72b2c91edc166cb16286d54df41a736ca81d7677cb677b5 760678 openafs-dbserver_1.6.1-3+deb7u3_amd64.deb
93b0b2a4f57db11eeefae6b01b718feb77e69b4cfcc81d71f914f18eb5129c04 4642036 openafs-doc_1.6.1-3+deb7u3_all.deb
199c9ec762439042bc2a4b6e16cb5bb934ba5f17544ff29da765fca8fbdd9f4c 385030 openafs-krb5_1.6.1-3+deb7u3_amd64.deb
43baca6f42b7d9ef867c050ef8cec49a7cfdb7e9fcb30e6335d2ecf509f13089 81744 libkopenafs1_1.6.1-3+deb7u3_amd64.deb
7336002d10c9982c3775922698d602e69a060ba5992b906a44f730b410e14673 158998 libafsauthent1_1.6.1-3+deb7u3_amd64.deb
c6a7d60eed460831e34334b39ca1bb93b13a99360e25cff6a9882892dfc17f29 214116 libafsrpc1_1.6.1-3+deb7u3_amd64.deb
33071c40a060a37499b4c3b205449b74b8099d3223f29f5eea07ea7f99bf1b81 2892536 libopenafs-dev_1.6.1-3+deb7u3_amd64.deb
7e09043ad6051b17f357070380522643fa69797bbd40dc875bce4e4ff155ec9f 1117372 openafs-modules-source_1.6.1-3+deb7u3_all.deb
ece55f5fcfba856947f2193bac1f632bbd6dea0f66fb6fabfab924d71eff73cf 1359146 openafs-modules-dkms_1.6.1-3+deb7u3_all.deb
5ef6c42a905df939c8a73f64048a09fb1e91b112d3c514d42aca80f850e150ee 359306 libpam-openafs-kaserver_1.6.1-3+deb7u3_amd64.deb
760339981ed8efb6b3ee94c8866b38c8c15dc2b82ed6fdda01364fe89f5f4623 21542402 openafs-dbg_1.6.1-3+deb7u3_amd64.deb
Files:
2d93c5c5bb016b9f7698c6901a923b2c 2527 net optional openafs_1.6.1-3+deb7u3.dsc
44ce0ba6c4b78b26183501458bf79919 187467 net optional openafs_1.6.1-3+deb7u3.debian.tar.gz
e5656fdcda1864cec7d7820afe113bbb 3899908 net optional openafs-client_1.6.1-3+deb7u3_amd64.deb
9104d5787e7db545180823ec1dde8b91 324480 net extra openafs-fuse_1.6.1-3+deb7u3_amd64.deb
7e21ac59120f3a43df4f2f893d1a3ebc 319726 net extra openafs-kpasswd_1.6.1-3+deb7u3_amd64.deb
24ce48e2ce4b803c8cdf210853cfd3fb 3107400 net optional openafs-fileserver_1.6.1-3+deb7u3_amd64.deb
ee8b518a6a73492d37eeb993d10097b8 760678 net optional openafs-dbserver_1.6.1-3+deb7u3_amd64.deb
45e4cb647bcedb374de464a9f19cb34e 4642036 doc optional openafs-doc_1.6.1-3+deb7u3_all.deb
a7c83955c6664cb29a3c5831912b36b7 385030 net optional openafs-krb5_1.6.1-3+deb7u3_amd64.deb
09fa4aae8be8bd680ef148cc1a7a833d 81744 libs optional libkopenafs1_1.6.1-3+deb7u3_amd64.deb
0b93b7e0d404bed8b138113cc1dc27fc 158998 libs optional libafsauthent1_1.6.1-3+deb7u3_amd64.deb
df23e523e328b5ad6729f52fb1f23181 214116 libs optional libafsrpc1_1.6.1-3+deb7u3_amd64.deb
db5af677bbe6baad9df23196ac53b01f 2892536 libdevel extra libopenafs-dev_1.6.1-3+deb7u3_amd64.deb
added7d22a04b59c45201f48cb8824ca 1117372 kernel extra openafs-modules-source_1.6.1-3+deb7u3_all.deb
9bd6ed61d77ca2a5018a3e82a7a3e813 1359146 kernel extra openafs-modules-dkms_1.6.1-3+deb7u3_all.deb
469125d1883e6655cd3c69d97369af95 359306 admin extra libpam-openafs-kaserver_1.6.1-3+deb7u3_amd64.deb
50499a4403caa9ac989e348c3dc4e712 21542402 debug extra openafs-dbg_1.6.1-3+deb7u3_amd64.deb
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1
iQEcBAEBCgAGBQJVugM5AAoJEBC+iYPz1Z1k+CkIALquN+eT1sApQwUDKQRB+8F/
rPRPsXQ2Bh+IHJzQH+2OiJ7lLW6O5GmrachWxeJOjk53aUPSvVjDpNzre4wmd44c
lq8lw9NuAJzpJL8/YXF9yw6mMHh90iyYcmzHud/E9BbZw9jRrOqiUQrSkJWVVd8U
7BHaYttK0U/3XI6i6NaRslCDKS4JdYIMdvSxzxXXd3go7EpiaeFTjBNb0O0ffpwP
yXsm4Ie6Hr1OPnhSJN3AaLQRKVo3h0PZa//kzNVz+4WGI8VZ3tdY8xNu8vrALSI/
EnmG0EBVTyEyA+sv5qqolf7QbHgfIKc7FbiaoTo55I+YNe266TUNCQVt89a2ZCU=
=A5XZ
-----END PGP SIGNATURE-----