{ "schema_version": "1.7.0", "id": "MGASA-2019-0383", "published": "2019-12-13T18:25:24Z", "modified": "2019-12-13T18:01:30Z", "summary": "Updated openafs packages fix security vulnerabilities", "details": "Update to security-release 1.8.5, adresses:\n\n* OPENAFS-SA-2019-001: Skip server OUT args on error\n* OPENAFS-SA-2019-002: Zero all server RPC args\n* OPENAFS-SA-2019-003: ubik: Avoid unlocked ubik_currentTrans deref\n\nUpdate to official version 1.8.4:\n\n* support Linux-kernel 5.3\n* Avoid non-dir ENOENT errors in afs_lookup\n* fix parsing of fileservers with -vlruthresh, etc.\n* other bugfixes\n", "references": [ { "type": "ADVISORY", "url": "https://advisories.mageia.org/MGASA-2019-0383.html" }, { "type": "REPORT", "url": "https://bugs.mageia.org/show_bug.cgi?id=25816" }, { "type": "WEB", "url": "https://openafs.org/pages/security/OPENAFS-SA-2019-001.txt" }, { "type": "WEB", "url": "https://openafs.org/pages/security/OPENAFS-SA-2019-002.txt" }, { "type": "WEB", "url": "https://openafs.org/pages/security/OPENAFS-SA-2019-003.txt" }, { "type": "WEB", "url": "https://lists.opensuse.org/opensuse-updates/2019-12/msg00013.html" }, { "type": "WEB", "url": "http://openafs.org/dl/openafs/1.8.4/RELNOTES-1.8.4" }, { "type": "WEB", "url": "http://openafs.org/dl/openafs/1.8.5/RELNOTES-1.8.5" } ], "affected": [ { "package": { "ecosystem": "Mageia:7", "name": "openafs", "purl": "pkg:rpm/mageia/openafs?arch=source&distro=mageia-7" }, "ranges": [ { "type": "ECOSYSTEM", "events": [ { "introduced": "0" }, { "fixed": "1.8.5-1.mga7" } ] } ], "ecosystem_specific": { "section": "core" } } ], "credits": [ { "name": "Mageia", "type": "COORDINATOR", "contact": [ "https://wiki.mageia.org/en/Packages_Security_Team" ] } ] }