-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Format: 1.8 Date: Wed, 25 Dec 2024 21:19:02 +0100 Source: openafs Binary: openafs-doc openafs-modules-dkms openafs-modules-source Architecture: all Version: 1.8.9-1+deb12u1 Distribution: bookworm-security Urgency: high Maintainer: all Build Daemon (x86-grnet-02) Changed-By: Salvatore Bonaccorso Description: openafs-doc - AFS distributed filesystem documentation openafs-modules-dkms - AFS distributed filesystem kernel module DKMS source openafs-modules-source - AFS distributed filesystem kernel module source Closes: 1087406 1087407 Changes: openafs (1.8.9-1+deb12u1) bookworm-security; urgency=high . * Non-maintainer upload by the Security Team. * afs: Properly type afs_osi_suser cred arg * Theft of credentials in Unix client PAGs (CVE-2024-10394) (Closes: #1087406, #1087407) * Fileserver crash and possible information leak on StoreACL/FetchACL (CVE-2024-10396) (Closes: #1087406, #1087407) * Preallocated buffer overflows in XDR responses (CVE-2024-10397) (Closes: #1087406, #1087407) Checksums-Sha1: 0e313782c60047968fcf4638a857b296c69fb5d5 3971804 openafs-doc_1.8.9-1+deb12u1_all.deb 1d3d3ce1c6a342a1d1bfe229b8ac37e9cf59394a 996716 openafs-modules-dkms_1.8.9-1+deb12u1_all.deb fc59b0f3dffc9ed1c084f6b882d0774819b6a6db 1227876 openafs-modules-source_1.8.9-1+deb12u1_all.deb 43a4ba06f83c31ecaa4f77c4824a652f272128d3 12040 openafs_1.8.9-1+deb12u1_all-buildd.buildinfo Checksums-Sha256: bf8fb5e79341b27af7d43f83c1fa26349a6725ce618fa8e89fed6afb50e7a092 3971804 openafs-doc_1.8.9-1+deb12u1_all.deb 6f511de47d945a81d08cdd5c00468bbe713db81dd98c495a82506d36ff2bc110 996716 openafs-modules-dkms_1.8.9-1+deb12u1_all.deb 5beb89b505fea84730334f5e2c6d0543ba043ec562e7c398a3c59409ee8c44cb 1227876 openafs-modules-source_1.8.9-1+deb12u1_all.deb ebccc340e2eb5a60ca7c16497fbebf59458c9b474e735632b383dd5281df0a81 12040 openafs_1.8.9-1+deb12u1_all-buildd.buildinfo Files: f9426bd4c46dc424a5da388cc71f5dfd 3971804 doc optional openafs-doc_1.8.9-1+deb12u1_all.deb 91a5bbfec326e2f7cd712195f33c6dc3 996716 kernel optional openafs-modules-dkms_1.8.9-1+deb12u1_all.deb 369312c038e0c7f25d2fc889c3fd9077 1227876 kernel optional openafs-modules-source_1.8.9-1+deb12u1_all.deb fcfc64c30a4fe9edaab96312749bded1 12040 net optional openafs_1.8.9-1+deb12u1_all-buildd.buildinfo -----BEGIN PGP SIGNATURE----- iQIzBAEBCgAdFiEEQsM0t1ygJv2xcx3e4cagXJhOTXsFAmdtZwMACgkQ4cagXJhO TXt3IhAAjNcZM6F/5tu2ez80uUn4XbyP1CzMMb7+o6yvl72C/sgI5HmFnbiRqRTL HngLGCiCvxCMcdIxOTMPtHRJFHs7TdXvZngNdv5+WdbTePBmCfiHcKLV1CkJJW3T retVSAXsUqeTpAFS6y8OX/K4Q0sJlHUe9Yf/kLhlLI9IItH+SSDusthcsJCK71g6 BShpbgXLnqnLed6oDy2FMuk+eUUxoURpCzpUD9fCAGtwTIQe+o2FO29e2aOY9AGm dtLaowZ17vPAVdjivhaA+K5b5gpm9uJ25Fb3iSAAaiooOSpoLnzTWv2FQxfZh0gO I6boTlXgYgwx52HiZFLp7nloIb1G9RlnE2dsHPqKMXfKW5AZlYuvdM9s+yZXV8cK Pke0nFdRs5MBraPItMmeMlsPibtzE0nACe6opZ8LRV8bCxZIprf7yxMtIO9ObGek 228Ow4kge84rF//Ritipq9qtbivpV+ICFnEBL2Un6Bz5h45JUnZ2yJUExy08vGiI X0Y4banWT3qgM+JalDP6fIAsjftXWupqZ04zUyEAvlZuQVG37fnnFuVL57bJ4qg2 6HLKWneNWu/GUMN5DdenlRCpmGBNMaApVXfZDQr8tMMyEekbDP72vZCRT7t5VIuU K5jOCNyCX+p+2rZrJNhnn+w4yB8ob5JU6JKEr7N1voeSwXxhc+g= =mfZz -----END PGP SIGNATURE-----