-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Format: 1.8 Date: Wed, 25 Dec 2024 21:19:02 +0100 Source: openafs Binary: libafsauthent2 libafsauthent2-dbgsym libafsrpc2 libafsrpc2-dbgsym libkopenafs2 libkopenafs2-dbgsym libopenafs-dev libopenafs-dev-dbgsym openafs-client openafs-client-dbgsym openafs-dbserver openafs-dbserver-dbgsym openafs-fileserver openafs-fileserver-dbgsym openafs-fuse openafs-fuse-dbgsym openafs-krb5 openafs-krb5-dbgsym Architecture: armhf Version: 1.8.9-1+deb12u1 Distribution: bookworm-security Urgency: high Maintainer: arm Build Daemon (arm-ubc-05) Changed-By: Salvatore Bonaccorso Description: libafsauthent2 - AFS distributed file system runtime library (authentication) libafsrpc2 - AFS distributed file system runtime library (RPC layer) libkopenafs2 - AFS distributed file system runtime library (PAGs) libopenafs-dev - AFS distributed filesystem development libraries openafs-client - AFS distributed filesystem client support openafs-dbserver - AFS distributed filesystem database server openafs-fileserver - AFS distributed filesystem file server openafs-fuse - AFS distributed file system experimental FUSE client openafs-krb5 - AFS distributed filesystem Kerberos 5 integration Closes: 1087406 1087407 Changes: openafs (1.8.9-1+deb12u1) bookworm-security; urgency=high . * Non-maintainer upload by the Security Team. * afs: Properly type afs_osi_suser cred arg * Theft of credentials in Unix client PAGs (CVE-2024-10394) (Closes: #1087406, #1087407) * Fileserver crash and possible information leak on StoreACL/FetchACL (CVE-2024-10396) (Closes: #1087406, #1087407) * Preallocated buffer overflows in XDR responses (CVE-2024-10397) (Closes: #1087406, #1087407) Checksums-Sha1: c1a8f58605fa4abe275b82e15cd3e212159ef7c6 449568 libafsauthent2-dbgsym_1.8.9-1+deb12u1_armhf.deb 34016b5118e0a8f74e21f06271df9405a51fe207 206764 libafsauthent2_1.8.9-1+deb12u1_armhf.deb 812cef53289dda3b1d6ae5ad565e2118a632dbe2 403628 libafsrpc2-dbgsym_1.8.9-1+deb12u1_armhf.deb 230ada8f682f0622b0876ea60ed43ee4cd496993 183832 libafsrpc2_1.8.9-1+deb12u1_armhf.deb 401cbb640eb0838d765976a8640d8dc09c9ef266 7560 libkopenafs2-dbgsym_1.8.9-1+deb12u1_armhf.deb e33461e88ca4690973eb4f5232e66d00e9dfb66f 81888 libkopenafs2_1.8.9-1+deb12u1_armhf.deb e7050cbf8c08ab7c262a4c1be5790b58433e4488 90088 libopenafs-dev-dbgsym_1.8.9-1+deb12u1_armhf.deb b0750ab83d3512d0a9f94e0c7939eb6b4ef83490 1514020 libopenafs-dev_1.8.9-1+deb12u1_armhf.deb c6b86a91d353865f697d597bd21c9fd304dfdd10 8058140 openafs-client-dbgsym_1.8.9-1+deb12u1_armhf.deb 66d21f31049036ed38ae9fdef06074515453f6b7 1899864 openafs-client_1.8.9-1+deb12u1_armhf.deb fa41a4264f6b6cce4b37728a15e8726f90bf6d44 2248516 openafs-dbserver-dbgsym_1.8.9-1+deb12u1_armhf.deb 3394f2aa33de2d702873ba4ab61732a016fc814f 551036 openafs-dbserver_1.8.9-1+deb12u1_armhf.deb 41d98f07253343754187b70effb7fa254a94c83a 8588580 openafs-fileserver-dbgsym_1.8.9-1+deb12u1_armhf.deb a15ac90b4fb9c0aa076b9faf2f711f0c80b8914a 1195256 openafs-fileserver_1.8.9-1+deb12u1_armhf.deb 93a38053f702fd2529a4b223517a43c30d6c961d 904340 openafs-fuse-dbgsym_1.8.9-1+deb12u1_armhf.deb 05f85524a0dad9b89ebe070e4c1a943806790f0d 279584 openafs-fuse_1.8.9-1+deb12u1_armhf.deb b7410888aaa9b7d47a42207f49b680992199aabb 1440384 openafs-krb5-dbgsym_1.8.9-1+deb12u1_armhf.deb 1260d8380b91a2591303c9e85938e517b0760936 297964 openafs-krb5_1.8.9-1+deb12u1_armhf.deb 7387a6fd2c38dba6ee68f87f0fc9b9139e453e3b 13203 openafs_1.8.9-1+deb12u1_armhf-buildd.buildinfo Checksums-Sha256: a74febbe0555f34cb2babc20c1d2282ed674d61e6448296dac9f25114c4e2413 449568 libafsauthent2-dbgsym_1.8.9-1+deb12u1_armhf.deb 7402f0d609ad2253835db5d0edd8e072ebd83e0cf8e08d6d8dfd7cbdea1af386 206764 libafsauthent2_1.8.9-1+deb12u1_armhf.deb 72ac3f08f3771cd5584f02a24db3cc24df803e892f85c072eb4bd8ce9418584c 403628 libafsrpc2-dbgsym_1.8.9-1+deb12u1_armhf.deb 179efeb0b7136a754a323f8446b2faffd4a819701548a89b019ce83cc080093d 183832 libafsrpc2_1.8.9-1+deb12u1_armhf.deb f6668eddcde2486c6d39e947e9336a1046b4eb0cf4337fb8c7fda1ba12e044d4 7560 libkopenafs2-dbgsym_1.8.9-1+deb12u1_armhf.deb 8222718eb934f882c41c486d9afea98958f1080623c9562beaa34c0324233b8e 81888 libkopenafs2_1.8.9-1+deb12u1_armhf.deb 9b9f3c87d5417b9bb38902caf51195d07ba0b62d71dbfb2cb6b1b3fb50921a10 90088 libopenafs-dev-dbgsym_1.8.9-1+deb12u1_armhf.deb e061727506947dcc3eaee41c365a7aad20dc0065da50958c1f7592d1d400b534 1514020 libopenafs-dev_1.8.9-1+deb12u1_armhf.deb e4cfcf04b906d938c881863932093e39b6d0d7107a3f45d160aad228e34a23d6 8058140 openafs-client-dbgsym_1.8.9-1+deb12u1_armhf.deb 321a281090959f06cbc7333e1e6cb8dc4b60e02b664312f6338f71701169ace7 1899864 openafs-client_1.8.9-1+deb12u1_armhf.deb 60f08ff0179c29ed69e45ad4aeb94dbe469fb894e2c00fe2892d80a09a25ff9f 2248516 openafs-dbserver-dbgsym_1.8.9-1+deb12u1_armhf.deb ca70d0d278d4524836d71621ecf7ced7c6977c328c920a49a31f237b6463aa14 551036 openafs-dbserver_1.8.9-1+deb12u1_armhf.deb 710a8f2f36c81eb2a3aee8b5b5b71dfadcaeacdeafa4aa346abe74c7b546d5cc 8588580 openafs-fileserver-dbgsym_1.8.9-1+deb12u1_armhf.deb 25a0a60e063c29ec50256e759b037f14ff2d9f92948b3e88e389cc2b7ad4a07c 1195256 openafs-fileserver_1.8.9-1+deb12u1_armhf.deb f4eb0b981ec4fcbe70346a5cb5720c670e8368a9a8e389b091c9a5dc412bc69d 904340 openafs-fuse-dbgsym_1.8.9-1+deb12u1_armhf.deb 7eace15a15891a7c244a44c37297023dcc71c8ffd0412af58e0307d7a0898dd9 279584 openafs-fuse_1.8.9-1+deb12u1_armhf.deb 96863d32cc5450d7fff059429a7600ed13f5114db751e504912e15ec3a4ce8ca 1440384 openafs-krb5-dbgsym_1.8.9-1+deb12u1_armhf.deb 63fa3f4a6ef03929b414b9e13a259d07054613de72a3d3a44df3989aa01e1297 297964 openafs-krb5_1.8.9-1+deb12u1_armhf.deb 68604cd58e5b97d62fd20c429ffe80512040f71c826d20a71a2137c531e1cdf9 13203 openafs_1.8.9-1+deb12u1_armhf-buildd.buildinfo Files: 40111d2d95e7f35509ee15d2dbba26ef 449568 debug optional libafsauthent2-dbgsym_1.8.9-1+deb12u1_armhf.deb 29d6fbeccaa07c9c2a8e606413215178 206764 libs optional libafsauthent2_1.8.9-1+deb12u1_armhf.deb ad15fc64a3457a16300cf5668c7bf57e 403628 debug optional libafsrpc2-dbgsym_1.8.9-1+deb12u1_armhf.deb 8079f069eb69ba4234fd624b33696570 183832 libs optional libafsrpc2_1.8.9-1+deb12u1_armhf.deb 631ba282ca4b91de3d5ff00a0dc80a33 7560 debug optional libkopenafs2-dbgsym_1.8.9-1+deb12u1_armhf.deb 86878af770d18a2bb48b455d5d9a5c37 81888 libs optional libkopenafs2_1.8.9-1+deb12u1_armhf.deb 69cdf81e7b1de80acb6852b6e98a577c 90088 debug optional libopenafs-dev-dbgsym_1.8.9-1+deb12u1_armhf.deb 5edd4050c573e90e7bddba343c8e5d71 1514020 libdevel optional libopenafs-dev_1.8.9-1+deb12u1_armhf.deb dccf4eef561338edf87e8b20ca121bd9 8058140 debug optional openafs-client-dbgsym_1.8.9-1+deb12u1_armhf.deb 9fdf2db33bc240658fac87ea32289d69 1899864 net optional openafs-client_1.8.9-1+deb12u1_armhf.deb 4aa5eb338dc040835e5a79a5e87d2b45 2248516 debug optional openafs-dbserver-dbgsym_1.8.9-1+deb12u1_armhf.deb 78e7dd4e8ec5f108e4fe5d2888087357 551036 net optional openafs-dbserver_1.8.9-1+deb12u1_armhf.deb fd28df823109d44679f1db63d7baf823 8588580 debug optional openafs-fileserver-dbgsym_1.8.9-1+deb12u1_armhf.deb 4ba77b3c65dc1e9c6e6978eb0389f1fd 1195256 net optional openafs-fileserver_1.8.9-1+deb12u1_armhf.deb bab78e80273f44443fda3e7579977878 904340 debug optional openafs-fuse-dbgsym_1.8.9-1+deb12u1_armhf.deb e3d2901f459b3d8a3b28b2df6e157c94 279584 net optional openafs-fuse_1.8.9-1+deb12u1_armhf.deb 28905b0fe7f83bc7ec32580293d1b3f1 1440384 debug optional openafs-krb5-dbgsym_1.8.9-1+deb12u1_armhf.deb 9e52bd4f774d91106e88c18630f5e170 297964 net optional openafs-krb5_1.8.9-1+deb12u1_armhf.deb caa403d23fc84e93c245bd766b9f1147 13203 net optional openafs_1.8.9-1+deb12u1_armhf-buildd.buildinfo -----BEGIN PGP SIGNATURE----- iQIzBAEBCgAdFiEEmbvtGd+QaAE2Bi5fsFgOvjtRcdMFAmdtaRgACgkQsFgOvjtR cdMHlw//TtW/Kw7b5tK61MsTZx+9xf4kUjaR4LEFcm17avAqInyRPggD2BmjB3uK 0raGBua6t8If+0i0FskTTi/9lN1HnistiXLbFSz1QMZPlWaBn/Xlgh5ca6KEJ8Bd Xc9GYzQborXa025SJ9f5VmZ4vQQrwJOipJRfa6c2Bj9Ohpy3cPXcs/GOaFEuymJH /ektCyPIRb7DoczJH6BHJHSIlBB1bR2P/IoUx0dA6ltD2Xcl5uNWqKvZwCSc3TFA zwIZLwSYIMzSQopYK2njb1nSsgZpGzCzGimwLDtsBuvGaDeW8cPVQGO2ayCv/YA+ IyWv9AAiS+m9eOhVO1mfkFIXwDrkwsQc7L2A4gpLSX2ZyTq1vq18ftA4g5cJcs+2 bGGIETaGSszdig7Z3BnaaQ8Jt3oQczM1oA9FQOV7MG5Yx5FtZQYNaFa2HFjPgUkA IF/NQabsyYvX2FgTSE3BXZTV/cS4oxygKz8hM75W5i0CWykfLxLcjHI92CBgBOtD Lpjn/OeXyV1BvBJEybxsFMJTk6rLDPnZPkXrHJZcdtV8Vg0YPpVslaAfoQ01SuEn 5FFjxr4sdu9j7MNFMvhB/RAoIUoleYEjBAmQE+p23nQ13HrTBBh+rNspLzPc42Bg lD2kv+JcV7W8GaG7CTkxzEs1FQpPq3LkuMiXbJKnyqFgBp5bKrA= =S2JG -----END PGP SIGNATURE-----