-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Format: 1.8 Date: Mon, 07 Feb 2011 10:48:28 -0800 Source: openafs Binary: openafs-client openafs-kpasswd openafs-fileserver openafs-dbserver openafs-doc openafs-krb5 libopenafs-dev openafs-modules-source openafs-modules-dkms libpam-openafs-kaserver openafs-dbg Architecture: amd64 Version: 1.4.12.1+dfsg-4 Distribution: squeeze-security Urgency: high Maintainer: amd64 Build Daemon (brahms) Changed-By: Russ Allbery Description: libopenafs-dev - AFS distributed filesystem development libraries libpam-openafs-kaserver - AFS distributed filesystem kaserver PAM module openafs-client - AFS distributed filesystem client support openafs-dbg - AFS distributed filesystem debugging information openafs-dbserver - AFS distributed filesystem database server openafs-doc - AFS distributed filesystem documentation openafs-fileserver - AFS distributed filesystem file server openafs-kpasswd - AFS distributed filesystem old password changing openafs-krb5 - AFS distributed filesystem Kerberos 5 integration openafs-modules-dkms - AFS distributed filesystem kernel module DKMS source openafs-modules-source - AFS distributed filesystem kernel module source Closes: 607903 Changes: openafs (1.4.12.1+dfsg-4) stable-security; urgency=high . * Apply upstream deltas: - [707a959c] update ticket5 from heimdal. Avoids a double-free (from upstream) which basically allows an arbitrary attack against any krb5-aware Rx service by exploiting when the double-free occurs in asn1 payloads which came from the wire. - [beaf1606] LINUX: Use correct type of error in flock code. This avoids dereferencing a pointer that is not a pointer due to failing to properly ERR_PTR a return value. * Add a dependency on libc6-dev to openafs-modules-dkms. dkms doesn't depend on it because most kernel modules don't need it, but openafs builds userspace helper programs. Thanks, Peter Palfrader. (Closes: #607903) Checksums-Sha1: 5b318a4124659a3267a868e5440448607a7ef710 3563738 openafs-client_1.4.12.1+dfsg-4_amd64.deb 795f869b874cbf84f921f1a0b5ae444ab56777dc 329180 openafs-kpasswd_1.4.12.1+dfsg-4_amd64.deb c884f943cc076e149105e1d2af56ddaccd7b29a7 1296604 openafs-fileserver_1.4.12.1+dfsg-4_amd64.deb 708140c740979e5ef3441f52410099a23e1ce218 707760 openafs-dbserver_1.4.12.1+dfsg-4_amd64.deb 582d82fd1b12791ec1bda64c8fed67dafcda19c2 312860 openafs-krb5_1.4.12.1+dfsg-4_amd64.deb 26b84546a9e5e25a24ee687f505146f08f1849ba 2552068 libopenafs-dev_1.4.12.1+dfsg-4_amd64.deb e440b0203682c94c9d13b1218ec2c0cdb0502dcb 895896 openafs-modules-source_1.4.12.1+dfsg-4_amd64.deb 61b3796ac5fa7dc9412a7577a9bce3155bd7c417 1058872 openafs-modules-dkms_1.4.12.1+dfsg-4_amd64.deb 5b068e0ac99e785c474246a613aa75036c3f1d90 488968 libpam-openafs-kaserver_1.4.12.1+dfsg-4_amd64.deb a195c8bc867b0b5de9bb98296ede7fb209806389 2827374 openafs-dbg_1.4.12.1+dfsg-4_amd64.deb Checksums-Sha256: 0ac285ab6d1391579af91f5bb66f21780d20b194d711ec8b52cdda5311d9f770 3563738 openafs-client_1.4.12.1+dfsg-4_amd64.deb 808f5d3fd3af98cf1411861ac39be40d31bae77a32b504f9e5e89902851c8e1d 329180 openafs-kpasswd_1.4.12.1+dfsg-4_amd64.deb c1837911f20172e6cef333b26831ebe386f471b664d65eece28f3a5c5d25a485 1296604 openafs-fileserver_1.4.12.1+dfsg-4_amd64.deb 4a5bb235306d14688b2ff89a23fd454f56f52b9b2a5b389635e8a37534a806b2 707760 openafs-dbserver_1.4.12.1+dfsg-4_amd64.deb a0fbf3fdecf6a8c3b636403ff0c4d3e2e84bc889d20132330f4b73b5ad7efaae 312860 openafs-krb5_1.4.12.1+dfsg-4_amd64.deb 37ce6cd9d4f17a60487c8e1c8af8e8c10b9f2159611c79699b780b57750e4d2b 2552068 libopenafs-dev_1.4.12.1+dfsg-4_amd64.deb 8af481b2e36ae20aeab571c9a186516ec9a08dc8f6536d4243a64055440df922 895896 openafs-modules-source_1.4.12.1+dfsg-4_amd64.deb aeba5e506fe2e6f3f64e1788bda34cc3233e980ae067659cd52806edb3ef328a 1058872 openafs-modules-dkms_1.4.12.1+dfsg-4_amd64.deb 666849900fa7a7c8b48905f76bac4dc22c43f6f4874684603853d2206373448f 488968 libpam-openafs-kaserver_1.4.12.1+dfsg-4_amd64.deb 71fabb503ed59e333d2f3ee611c40459d09067dfc03fdf2bdf14c15b52140036 2827374 openafs-dbg_1.4.12.1+dfsg-4_amd64.deb Files: 9251ce10f7b3cc744b5495184a274459 3563738 net optional openafs-client_1.4.12.1+dfsg-4_amd64.deb 5e45308eb4f7d39916b5420fbb16d1c1 329180 net extra openafs-kpasswd_1.4.12.1+dfsg-4_amd64.deb d7feb6f68fa8a928298aa79fc96729b7 1296604 net optional openafs-fileserver_1.4.12.1+dfsg-4_amd64.deb b02fe9893d73258b291cf88235168bb0 707760 net optional openafs-dbserver_1.4.12.1+dfsg-4_amd64.deb 288526557bd15a31698453ae67dcc1b5 312860 net optional openafs-krb5_1.4.12.1+dfsg-4_amd64.deb fa2a3db4d80df51b48d5652115a0ba77 2552068 libdevel extra libopenafs-dev_1.4.12.1+dfsg-4_amd64.deb 5ce0a406f2293cd386c30c925a84a36c 895896 kernel extra openafs-modules-source_1.4.12.1+dfsg-4_amd64.deb 77863d06872a1c2edcb4af1c50681e32 1058872 kernel extra openafs-modules-dkms_1.4.12.1+dfsg-4_amd64.deb d3628c73cb06119f683ab25162abba8c 488968 admin extra libpam-openafs-kaserver_1.4.12.1+dfsg-4_amd64.deb c75d8e584be0ed444f753eef73f924fc 2827374 debug extra openafs-dbg_1.4.12.1+dfsg-4_amd64.deb -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.10 (GNU/Linux) iEYEARECAAYFAk1UYJUACgkQXm3vHE4uyloulQCfezBVywqWay2HB+fdASi89u/B 2gEAn0nUA1jkgJhlireF8Us19sKe/awT =x8r8 -----END PGP SIGNATURE-----