-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Format: 1.8 Date: Wed, 25 Dec 2024 21:19:02 +0100 Source: openafs Binary: libafsauthent2 libafsauthent2-dbgsym libafsrpc2 libafsrpc2-dbgsym libkopenafs2 libkopenafs2-dbgsym libopenafs-dev libopenafs-dev-dbgsym openafs-client openafs-client-dbgsym openafs-dbserver openafs-dbserver-dbgsym openafs-fileserver openafs-fileserver-dbgsym openafs-fuse openafs-fuse-dbgsym openafs-krb5 openafs-krb5-dbgsym Architecture: amd64 Version: 1.8.9-1+deb12u1 Distribution: bookworm-security Urgency: high Maintainer: amd64 / i386 Build Daemon (x86-ubc-01) Changed-By: Salvatore Bonaccorso Description: libafsauthent2 - AFS distributed file system runtime library (authentication) libafsrpc2 - AFS distributed file system runtime library (RPC layer) libkopenafs2 - AFS distributed file system runtime library (PAGs) libopenafs-dev - AFS distributed filesystem development libraries openafs-client - AFS distributed filesystem client support openafs-dbserver - AFS distributed filesystem database server openafs-fileserver - AFS distributed filesystem file server openafs-fuse - AFS distributed file system experimental FUSE client openafs-krb5 - AFS distributed filesystem Kerberos 5 integration Closes: 1087406 1087407 Changes: openafs (1.8.9-1+deb12u1) bookworm-security; urgency=high . * Non-maintainer upload by the Security Team. * afs: Properly type afs_osi_suser cred arg * Theft of credentials in Unix client PAGs (CVE-2024-10394) (Closes: #1087406, #1087407) * Fileserver crash and possible information leak on StoreACL/FetchACL (CVE-2024-10396) (Closes: #1087406, #1087407) * Preallocated buffer overflows in XDR responses (CVE-2024-10397) (Closes: #1087406, #1087407) Checksums-Sha1: 938dfbac3355141d0aaef9e937e0b7f5e0f2b723 410888 libafsauthent2-dbgsym_1.8.9-1+deb12u1_amd64.deb 9d4594857f7915ae0b5f69d2e0941420018deeda 213880 libafsauthent2_1.8.9-1+deb12u1_amd64.deb 61f2dc9a1666583a881a13808dfddecb66c3cd39 384024 libafsrpc2-dbgsym_1.8.9-1+deb12u1_amd64.deb 7077b01d74e2da5fc6644dc8f660db0e68e783f1 194100 libafsrpc2_1.8.9-1+deb12u1_amd64.deb c25507756324458ef84a298114582f444cba32d9 7272 libkopenafs2-dbgsym_1.8.9-1+deb12u1_amd64.deb 7dcf0f3e4ef4f79939fd6fb797eb4e4e242fdd7b 82200 libkopenafs2_1.8.9-1+deb12u1_amd64.deb f4ab4386702fef8f89a64ffc83e60e333fa47c8e 78668 libopenafs-dev-dbgsym_1.8.9-1+deb12u1_amd64.deb e0d012cd16d1faefab51c334e2150c94095f8913 1534688 libopenafs-dev_1.8.9-1+deb12u1_amd64.deb 302b4d80dcd9158ffb053a4afdada017a18bb816 8118956 openafs-client-dbgsym_1.8.9-1+deb12u1_amd64.deb 4fe3ca7ab12cbf6d48ca584986d72b50c19b7dbd 2060728 openafs-client_1.8.9-1+deb12u1_amd64.deb c8652b9732718768951d7244e741070954de1921 2185396 openafs-dbserver-dbgsym_1.8.9-1+deb12u1_amd64.deb 4f7afcc5705ed2eefb7b7af4eba69c0836fbae28 578944 openafs-dbserver_1.8.9-1+deb12u1_amd64.deb a4e0f9fc8d464d9a5dafa99ac920e00eaf066ed4 8547612 openafs-fileserver-dbgsym_1.8.9-1+deb12u1_amd64.deb eda2bf58caa164d4d2326132bde01e78da7a6dda 1357676 openafs-fileserver_1.8.9-1+deb12u1_amd64.deb 60a0b1e96ab32edd8d383c9ae4f3853a9b8a8740 801412 openafs-fuse-dbgsym_1.8.9-1+deb12u1_amd64.deb de6949e90c04b6f047f315a5c49383d997b0b560 284852 openafs-fuse_1.8.9-1+deb12u1_amd64.deb 580a4b640bb9248778392e6d5b53bb1d04de0017 1412144 openafs-krb5-dbgsym_1.8.9-1+deb12u1_amd64.deb c5d88cb5ea8e3e5846e9701bf7cfac0e02a11dc3 327436 openafs-krb5_1.8.9-1+deb12u1_amd64.deb 0ade2449dd2a05736dc6368297f17c7cf267590e 13328 openafs_1.8.9-1+deb12u1_amd64-buildd.buildinfo Checksums-Sha256: f3921300db74c18cdbdfc509cde84fbec80560186b8caab0ab7d0d8d72a1108a 410888 libafsauthent2-dbgsym_1.8.9-1+deb12u1_amd64.deb 4ded51b164cfefd514955d20cc3cbb434aa06c9e53f4319b1fb36c53cb947b3b 213880 libafsauthent2_1.8.9-1+deb12u1_amd64.deb ce8673f0b19041a381631ed71a67f0f03a241385124345a1822fc3c3d9e29b99 384024 libafsrpc2-dbgsym_1.8.9-1+deb12u1_amd64.deb d723ee9ee1b8bef0911b88d0d5dbd367acd33dde437c11acfeee82375abd5ce7 194100 libafsrpc2_1.8.9-1+deb12u1_amd64.deb 9d513d8ae09604868494f649b0e748848460452b45fc03400574df4d11344ed1 7272 libkopenafs2-dbgsym_1.8.9-1+deb12u1_amd64.deb 440c10f0f1f636991413c6c589e9dc891245834ba8a727b894d32cfe0f2d2f63 82200 libkopenafs2_1.8.9-1+deb12u1_amd64.deb 48accdc511e4fcdcd553134670606cc7d606d8e0deb1461698b3ad8145d302af 78668 libopenafs-dev-dbgsym_1.8.9-1+deb12u1_amd64.deb 7c33581f948b354633b2da75b4236ad7d740f512c8117a6e740bb66d3e2996b8 1534688 libopenafs-dev_1.8.9-1+deb12u1_amd64.deb 57d227bc9878663a974b795819f33a33161ed58409bcf34b0a4c7289f9670167 8118956 openafs-client-dbgsym_1.8.9-1+deb12u1_amd64.deb 721a2d742aaa411bb4c57bc38b654289ccde492f9944da593fa9666d39ff1fcb 2060728 openafs-client_1.8.9-1+deb12u1_amd64.deb 7c313d609cd180f3e55a1c93b496fb566dbb1e3b2608f5f57e885119075baae2 2185396 openafs-dbserver-dbgsym_1.8.9-1+deb12u1_amd64.deb 57b35c31e4ff9243a1cfd0dda6e41e7bb20bbc2f4bb16a70de2340982cd4c251 578944 openafs-dbserver_1.8.9-1+deb12u1_amd64.deb f1f48bd0b9aa22634449faf4049f12bd78f6a7263b2106f10dd151dbbe574fde 8547612 openafs-fileserver-dbgsym_1.8.9-1+deb12u1_amd64.deb 8858537332cba38ae1bc9e1e0984936b5b1450a399b187b7ccef40b7e2fd01b9 1357676 openafs-fileserver_1.8.9-1+deb12u1_amd64.deb 2f3d6d32e37573b9efac4b05af172e826c54034b0e2744ce5e7d04c6ffbfa10d 801412 openafs-fuse-dbgsym_1.8.9-1+deb12u1_amd64.deb d48d74114ad1c8be08ddcf2bb9bfded7db43ea1e335b723b299fcfcd6f07fa88 284852 openafs-fuse_1.8.9-1+deb12u1_amd64.deb 52e3c988ee4056b7a3b3c21f796337f2c561196bb83a612dace0796058bb8065 1412144 openafs-krb5-dbgsym_1.8.9-1+deb12u1_amd64.deb 0ea18cd3185909b029d422d972bfa2cb8e239715438b945f5f71fb598f3afe3a 327436 openafs-krb5_1.8.9-1+deb12u1_amd64.deb 4a6d6a0453bc11c794a8615bc2d52244e1b17ef6678c916ad271449f8f787867 13328 openafs_1.8.9-1+deb12u1_amd64-buildd.buildinfo Files: 32a5be52933512f0c4a982c64d886276 410888 debug optional libafsauthent2-dbgsym_1.8.9-1+deb12u1_amd64.deb 7c4b9bd80e98238194fd97fa34e441c9 213880 libs optional libafsauthent2_1.8.9-1+deb12u1_amd64.deb 198471d9522dd70ee0dd9907564435b2 384024 debug optional libafsrpc2-dbgsym_1.8.9-1+deb12u1_amd64.deb 6811732253c610217a6dceac14b0ad00 194100 libs optional libafsrpc2_1.8.9-1+deb12u1_amd64.deb 3e47bb3a6a8ca1dee094f8dcdfe4e021 7272 debug optional libkopenafs2-dbgsym_1.8.9-1+deb12u1_amd64.deb 65c830daf3e44cbdf8502fd0e4d0fe71 82200 libs optional libkopenafs2_1.8.9-1+deb12u1_amd64.deb 8c02ab65a68c860dc7c9e033605fe099 78668 debug optional libopenafs-dev-dbgsym_1.8.9-1+deb12u1_amd64.deb 865db58084d58ab5a9a68c35c0f2469a 1534688 libdevel optional libopenafs-dev_1.8.9-1+deb12u1_amd64.deb efcf8539b18eb7f48a37885d313c547b 8118956 debug optional openafs-client-dbgsym_1.8.9-1+deb12u1_amd64.deb 8f82d639b8ab605ce0597c08213a55d7 2060728 net optional openafs-client_1.8.9-1+deb12u1_amd64.deb e1b633339f8a622e6584ab331aa0ccef 2185396 debug optional openafs-dbserver-dbgsym_1.8.9-1+deb12u1_amd64.deb ae52ff52eebe0f1999dd9d568d5e44f2 578944 net optional openafs-dbserver_1.8.9-1+deb12u1_amd64.deb 2a88bca7b2277579ede19e996f306b72 8547612 debug optional openafs-fileserver-dbgsym_1.8.9-1+deb12u1_amd64.deb 8803ef5445543e164a0e6c98079946eb 1357676 net optional openafs-fileserver_1.8.9-1+deb12u1_amd64.deb 4df829754fcf192389ffd32eb85b8327 801412 debug optional openafs-fuse-dbgsym_1.8.9-1+deb12u1_amd64.deb fe31bab2669105f21fb77f4014039b20 284852 net optional openafs-fuse_1.8.9-1+deb12u1_amd64.deb 1941cb10641040b33abb49b9e402de67 1412144 debug optional openafs-krb5-dbgsym_1.8.9-1+deb12u1_amd64.deb 07dcd59c4d1f4c7854a5ccbf772b12f2 327436 net optional openafs-krb5_1.8.9-1+deb12u1_amd64.deb 44f1fe519e9386943a97c9494df65880 13328 net optional openafs_1.8.9-1+deb12u1_amd64-buildd.buildinfo -----BEGIN PGP SIGNATURE----- iQIzBAEBCgAdFiEE4Unr4QHS5Yi4rr9Q3KGKEAtjIVgFAmdtZcYACgkQ3KGKEAtj IViQ3w//aNt9kF4DAD5d48WQvQJq/tFQGmcMHh3JrzML4cqn4BxrcczeUkdtPVJS 2Udzd+rVOQgAwk+DPp5tYUm99AKp5Of2PGc1DAS/7rkADdTydBKayy+x11sQNIro P6PSezJdyeWnpRJ3wMEcaptD/IWwOVgN4AHc1yBbNIztPCKqznUH/YYaQN1mHJFN Dykv8GEhGtXpBAnyGcllVjO3QZ8/qfV4Dihw3qSKa5osjIPfTRCS9lAa9ZhVsl21 D8bBNmg9SYqRgcmrI2XCIUPhxLKFu8KTInWX0NaW/acayYFjZTgjSmNwjzcPQWT2 hdWjgtC6QX17MPr9Tt1lgmtrImdI1/WrglxxvrfVtsRKyXLQSRJLEPW2jUrwycFm TLrsWEt/WzutKzMoYelZcURwjuOXc/7H+dtuQP63VMqTj/qeWLN5p6eAuui4d5jW gYOUVrQcuFdxn8MAgYhy1UdRykWuAZtC6ViWyh+DiiNqN8DKzXKayO8LTwz4ajCR eNP1C0v6VFtsXSAZfCTWXXJ4RluVfP0RLODPTV+rXxkMzn01Vcba+IiduGhqvpxY bOm6DYlyehflMVTwwx14GrJ+4OCTDiRD+65Jk61E1d+rnroJFBoATE01SWLwsHTx xppMtu7CCsx+z0erz4Jt82J+Yr+eGxAdOEyC3rAuuLLseRdH+ZA= =D/sd -----END PGP SIGNATURE-----