-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Format: 1.8 Date: Mon, 07 Feb 2011 10:48:28 -0800 Source: openafs Binary: openafs-client openafs-kpasswd openafs-fileserver openafs-dbserver openafs-doc openafs-krb5 libopenafs-dev openafs-modules-source openafs-modules-dkms libpam-openafs-kaserver openafs-dbg Architecture: source all i386 Version: 1.4.12.1+dfsg-4 Distribution: stable-security Urgency: high Maintainer: Russ Allbery Changed-By: Russ Allbery Description: libopenafs-dev - AFS distributed filesystem development libraries libpam-openafs-kaserver - AFS distributed filesystem kaserver PAM module openafs-client - AFS distributed filesystem client support openafs-dbg - AFS distributed filesystem debugging information openafs-dbserver - AFS distributed filesystem database server openafs-doc - AFS distributed filesystem documentation openafs-fileserver - AFS distributed filesystem file server openafs-kpasswd - AFS distributed filesystem old password changing openafs-krb5 - AFS distributed filesystem Kerberos 5 integration openafs-modules-dkms - AFS distributed filesystem kernel module DKMS source openafs-modules-source - AFS distributed filesystem kernel module source Closes: 607903 Changes: openafs (1.4.12.1+dfsg-4) stable-security; urgency=high . * Apply upstream deltas: - [707a959c] update ticket5 from heimdal. Avoids a double-free (from upstream) which basically allows an arbitrary attack against any krb5-aware Rx service by exploiting when the double-free occurs in asn1 payloads which came from the wire. - [beaf1606] LINUX: Use correct type of error in flock code. This avoids dereferencing a pointer that is not a pointer due to failing to properly ERR_PTR a return value. * Add a dependency on libc6-dev to openafs-modules-dkms. dkms doesn't depend on it because most kernel modules don't need it, but openafs builds userspace helper programs. Thanks, Peter Palfrader. (Closes: #607903) Checksums-Sha1: aeda3c46d386c01adfffb0de8578f65fd0343c55 1933 openafs_1.4.12.1+dfsg-4.dsc 7a4bab9f0d058d2b3b5ec502da475dc6302244e5 9201271 openafs_1.4.12.1+dfsg.orig.tar.gz a8b021a27652119c98353c5cbffbb1d1e4ced0cd 156283 openafs_1.4.12.1+dfsg-4.diff.gz 8a103740ba30a236f83e1a1dad2c2808c4707c26 4477902 openafs-doc_1.4.12.1+dfsg-4_all.deb 762d052418838d7c5c2961376b46106a382ceda3 3025814 openafs-client_1.4.12.1+dfsg-4_i386.deb 9a6d82e307072a52e06b4569ff9f1a8fe8f87bda 275214 openafs-kpasswd_1.4.12.1+dfsg-4_i386.deb 1ccb67cf5bac5c4a3891ce4f2ac0ee985c4eb5e0 1119426 openafs-fileserver_1.4.12.1+dfsg-4_i386.deb 026c22fbd5d1b45dd9149289de4d394fb5e75e7b 580624 openafs-dbserver_1.4.12.1+dfsg-4_i386.deb 82735a66e49978a3d7075a2f88ab359f45d9a21c 260782 openafs-krb5_1.4.12.1+dfsg-4_i386.deb a8476617df90da8a893601dac9b562117b89337f 2176900 libopenafs-dev_1.4.12.1+dfsg-4_i386.deb 2351b0f83e12629a665fb2e48f1167dbfc936ac4 906310 openafs-modules-source_1.4.12.1+dfsg-4_i386.deb 641c51fa11ff86896ae2effc4aa1c4f3dff4ef80 1080558 openafs-modules-dkms_1.4.12.1+dfsg-4_i386.deb cdda077caad3b602652cf942e753810a3138f24a 431920 libpam-openafs-kaserver_1.4.12.1+dfsg-4_i386.deb aee2433ade84502511002b49d09ca191fd6ef90c 2770582 openafs-dbg_1.4.12.1+dfsg-4_i386.deb Checksums-Sha256: cd1223ac454d77c7aae3f8caacfc23d8d31c63c9a4913e5b0cb42b8f8c52f6b2 1933 openafs_1.4.12.1+dfsg-4.dsc 67d2b4fc741ecb8fb4c0043b20d764a4fb39701e06a25f317e9e3ba0c11345f2 9201271 openafs_1.4.12.1+dfsg.orig.tar.gz 3fcd9c21542f588438a60fa26f764762bda1339be69f3b7d429a0606d48b2fe6 156283 openafs_1.4.12.1+dfsg-4.diff.gz 0d7517c38a31f268cd4e583901c8ebed5e09dcbe16bad4bc4f9ef1ea8fa44fea 4477902 openafs-doc_1.4.12.1+dfsg-4_all.deb 025f086b26ea467e654a82777d826c5847dcb2bc4d8490b1d862b7a5789f804d 3025814 openafs-client_1.4.12.1+dfsg-4_i386.deb 6f99b36286b69fccd6dd1ec86405ff3cac6a8a115d3a5fdead26fc707e8cdbf0 275214 openafs-kpasswd_1.4.12.1+dfsg-4_i386.deb 6cf3d3b679fddfa5ca51d53e2e5cc558a833f6b778df843bbf777e2bfa2e6103 1119426 openafs-fileserver_1.4.12.1+dfsg-4_i386.deb 1134aeeba46ec1e273d0ffa7f8ef4dcc7704afd8234895edb4206d2354adac21 580624 openafs-dbserver_1.4.12.1+dfsg-4_i386.deb 4183f589850b13d557b0ac85b6932326d3c80a0aa1893ab2599a27b62d389750 260782 openafs-krb5_1.4.12.1+dfsg-4_i386.deb 825a31e4d404403816940b6daea9400cc6494b427164b069cba8e1d86dda9dff 2176900 libopenafs-dev_1.4.12.1+dfsg-4_i386.deb cfb292feae883c61a44012eb88b581e77e3b22366015f4887833cd8c1a00db5d 906310 openafs-modules-source_1.4.12.1+dfsg-4_i386.deb b5cd15dd4a8052737789ed3bfab6d7c90981ee6f7a1c6768255c774b13e41a9e 1080558 openafs-modules-dkms_1.4.12.1+dfsg-4_i386.deb 3d538754241ebece0aab6cf1243ef8ab5ea8213d163103b6c4345bd993e5dd74 431920 libpam-openafs-kaserver_1.4.12.1+dfsg-4_i386.deb 06ed37a149efe26671c635e21a79f84c462c2c7946f536551c1ae991f4263373 2770582 openafs-dbg_1.4.12.1+dfsg-4_i386.deb Files: 92fd60c98a682e00b75abdd44ee45406 1933 net optional openafs_1.4.12.1+dfsg-4.dsc ae7ecb32b0f1fcbf4d82537d31afba0c 9201271 net optional openafs_1.4.12.1+dfsg.orig.tar.gz a0d36e77878b04d76c0636f01268ac01 156283 net optional openafs_1.4.12.1+dfsg-4.diff.gz d466ab49ba41334536ac7bced93d42a9 4477902 doc optional openafs-doc_1.4.12.1+dfsg-4_all.deb 74a24592c6d7604545057b67ce2d4c4d 3025814 net optional openafs-client_1.4.12.1+dfsg-4_i386.deb 98fd1c74dac3fceb8a02a16e11287522 275214 net extra openafs-kpasswd_1.4.12.1+dfsg-4_i386.deb efb1144d99a982ec70e40bc212af5d58 1119426 net optional openafs-fileserver_1.4.12.1+dfsg-4_i386.deb b0207a3480cf39774a54f75a8d8e4f14 580624 net optional openafs-dbserver_1.4.12.1+dfsg-4_i386.deb ecbbfa88fb504264419de50e181532d2 260782 net optional openafs-krb5_1.4.12.1+dfsg-4_i386.deb 62ae0e9f460b7493da71ccfbfabd307a 2176900 libdevel extra libopenafs-dev_1.4.12.1+dfsg-4_i386.deb b3e142aa5ac45f63bcb37994fede14a3 906310 kernel extra openafs-modules-source_1.4.12.1+dfsg-4_i386.deb 078f1c1a0ecbc57b4adda5715a4d9dd3 1080558 kernel extra openafs-modules-dkms_1.4.12.1+dfsg-4_i386.deb efd377ff40df962e30ff17dd5041f2c8 431920 admin extra libpam-openafs-kaserver_1.4.12.1+dfsg-4_i386.deb 312d4886da9e059c9b9b9b19ded16ff3 2770582 debug extra openafs-dbg_1.4.12.1+dfsg-4_i386.deb -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.10 (GNU/Linux) iQEcBAEBCAAGBQJNUgP2AAoJEH2AMVxXNt515R0H/1YfSucQ0JRy3/tfB62S/Gmd 2flv5ac/IisAFhME1QsaKRdJoeZx6G55t7hW5p3DlgDD6jug/HSy7mzSxAxQ0BLI 0LB/Noz+OQyaWjukOVSxCKkZtcpvRTO9kOLTMGLUBXcnQQncZUpkkBy6ymhUWOqT w2pS2MR5R/UnjvGGNi+PzaIGWIqmXxHxjfSXB4HTRBG1v/hd0r0SAB6JS1xJOSMa yfM2Y2fuplSIxLc7x5gNbh7+FjPqJhfa6lLoojsjRJ+0FDfrEWMUJNCjBqwK7DNE jTOP6ane1AZt9bniWlolWXggaN9jtQ4b+CSmp5c70JE7SSA5OcHdQmv88i8dYpQ= =LwYg -----END PGP SIGNATURE-----