Updated openafs packages fix security vulnerabilities
Publication date: 13 Dec 2019Modification date: 13 Dec 2019
Type: security
Affected Mageia releases : 7
Description
Update to security-release 1.8.5, adresses:
* OPENAFS-SA-2019-001: Skip server OUT args on error
* OPENAFS-SA-2019-002: Zero all server RPC args
* OPENAFS-SA-2019-003: ubik: Avoid unlocked ubik_currentTrans deref
Update to official version 1.8.4:
* support Linux-kernel 5.3
* Avoid non-dir ENOENT errors in afs_lookup
* fix parsing of fileservers with -vlruthresh, etc.
* other bugfixes
References
- https://bugs.mageia.org/show_bug.cgi?id=25816
- https://openafs.org/pages/security/OPENAFS-SA-2019-001.txt
- https://openafs.org/pages/security/OPENAFS-SA-2019-002.txt
- https://openafs.org/pages/security/OPENAFS-SA-2019-003.txt
- https://lists.opensuse.org/opensuse-updates/2019-12/msg00013.html
- http://openafs.org/dl/openafs/1.8.4/RELNOTES-1.8.4
- http://openafs.org/dl/openafs/1.8.5/RELNOTES-1.8.5
SRPMS
7/core
- openafs-1.8.5-1.mga7