-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Format: 1.8 Date: Wed, 25 Dec 2024 21:19:02 +0100 Source: openafs Binary: libafsauthent2 libafsauthent2-dbgsym libafsrpc2 libafsrpc2-dbgsym libkopenafs2 libkopenafs2-dbgsym libopenafs-dev libopenafs-dev-dbgsym openafs-client openafs-client-dbgsym openafs-dbserver openafs-dbserver-dbgsym openafs-fileserver openafs-fileserver-dbgsym openafs-fuse openafs-fuse-dbgsym openafs-krb5 openafs-krb5-dbgsym Architecture: ppc64el Version: 1.8.9-1+deb12u1 Distribution: bookworm-security Urgency: high Maintainer: ppc64el Build Daemon (ppc64el-osuosl-02) Changed-By: Salvatore Bonaccorso Description: libafsauthent2 - AFS distributed file system runtime library (authentication) libafsrpc2 - AFS distributed file system runtime library (RPC layer) libkopenafs2 - AFS distributed file system runtime library (PAGs) libopenafs-dev - AFS distributed filesystem development libraries openafs-client - AFS distributed filesystem client support openafs-dbserver - AFS distributed filesystem database server openafs-fileserver - AFS distributed filesystem file server openafs-fuse - AFS distributed file system experimental FUSE client openafs-krb5 - AFS distributed filesystem Kerberos 5 integration Closes: 1087406 1087407 Changes: openafs (1.8.9-1+deb12u1) bookworm-security; urgency=high . * Non-maintainer upload by the Security Team. * afs: Properly type afs_osi_suser cred arg * Theft of credentials in Unix client PAGs (CVE-2024-10394) (Closes: #1087406, #1087407) * Fileserver crash and possible information leak on StoreACL/FetchACL (CVE-2024-10396) (Closes: #1087406, #1087407) * Preallocated buffer overflows in XDR responses (CVE-2024-10397) (Closes: #1087406, #1087407) Checksums-Sha1: 930e6a1e2a36d452480fb7e2bb6834c53f0be319 415200 libafsauthent2-dbgsym_1.8.9-1+deb12u1_ppc64el.deb 4895a0989dbd769dac6843c26946e67ead7eb3bd 217716 libafsauthent2_1.8.9-1+deb12u1_ppc64el.deb 9309ceb2ff6d9e2827c36c9865229b0cc07ae0ea 391544 libafsrpc2-dbgsym_1.8.9-1+deb12u1_ppc64el.deb efa56c7a44f90ef5180be21bab95c071b73e4651 198524 libafsrpc2_1.8.9-1+deb12u1_ppc64el.deb a28f2de21c4e062aa56cab3f1ec9cfc308a98e86 7264 libkopenafs2-dbgsym_1.8.9-1+deb12u1_ppc64el.deb b36f0f5acfe1d14782eab5f819caf1f743d34c18 82352 libkopenafs2_1.8.9-1+deb12u1_ppc64el.deb 49f42d43aca4f5f4e383500d43b1ef22981e6a6c 79364 libopenafs-dev-dbgsym_1.8.9-1+deb12u1_ppc64el.deb a4fa5c90f40c1520db95c46bfa42cb2e45172faa 1651888 libopenafs-dev_1.8.9-1+deb12u1_ppc64el.deb bd4ec1c143b046e61d456738536f47a10c73cf2c 7336696 openafs-client-dbgsym_1.8.9-1+deb12u1_ppc64el.deb d1dbc8ac9c8147b69c769c5038e59988b71c6820 2052080 openafs-client_1.8.9-1+deb12u1_ppc64el.deb b2b6de32feb2b33d7132372a9432add2156f23cb 2047852 openafs-dbserver-dbgsym_1.8.9-1+deb12u1_ppc64el.deb e7c4ffcd36d4eadfae5862da28d5a0925bba2966 589232 openafs-dbserver_1.8.9-1+deb12u1_ppc64el.deb ff879cf42882e643c324d2c3d546de19a3097702 7769464 openafs-fileserver-dbgsym_1.8.9-1+deb12u1_ppc64el.deb 5e88e2eb90d300a0a0f5e1027bc0040367a389e5 1338240 openafs-fileserver_1.8.9-1+deb12u1_ppc64el.deb ac09d4bd518e79180707fd9bacb7040b699a1147 806612 openafs-fuse-dbgsym_1.8.9-1+deb12u1_ppc64el.deb fa46419755883d2171aff5ae4780b7282c1b19bd 288052 openafs-fuse_1.8.9-1+deb12u1_ppc64el.deb bba86b1ecef5f075b78110d146458b158f0df925 1279792 openafs-krb5-dbgsym_1.8.9-1+deb12u1_ppc64el.deb c643f59c82ed1ae064751bd6a94336a2b636a09f 331220 openafs-krb5_1.8.9-1+deb12u1_ppc64el.deb f5a87ecd69ad66d4e09c3deebd03f9acfe7d84dc 13436 openafs_1.8.9-1+deb12u1_ppc64el-buildd.buildinfo Checksums-Sha256: 1c10a30efebfb6cc1fe89fc2fa4a2de3be1be854cade2e3fffd25b8f3800423b 415200 libafsauthent2-dbgsym_1.8.9-1+deb12u1_ppc64el.deb e7c5eeb283a912637aca1586bc1f0e2f342e0146a546ba0684b15c6568e24006 217716 libafsauthent2_1.8.9-1+deb12u1_ppc64el.deb 856014b55a742ffac58a289027dc61fb01991767543e0702e1bdb8763bb10bd2 391544 libafsrpc2-dbgsym_1.8.9-1+deb12u1_ppc64el.deb 1b6a44c07a75d6e7c5a696f0cd6545eff704edd92edf7cdd41f94edcaf3b8054 198524 libafsrpc2_1.8.9-1+deb12u1_ppc64el.deb f29258c42dd9e85bcfcb61015a2c714773524de9fb0d5d62f15ec7e2a71b634d 7264 libkopenafs2-dbgsym_1.8.9-1+deb12u1_ppc64el.deb e4333a996984d4f70e73a4483e4bca2c56f0dc2b3e2179c7e8fe823accdc3cd0 82352 libkopenafs2_1.8.9-1+deb12u1_ppc64el.deb db72a366ea90171e6cd1d380934996f6c3c09709a6a194335dff72ec40cff73e 79364 libopenafs-dev-dbgsym_1.8.9-1+deb12u1_ppc64el.deb a68745c923593723d7dcda912ecf202eeb2ac11fcce61e97dec4283ab2272cbf 1651888 libopenafs-dev_1.8.9-1+deb12u1_ppc64el.deb 37cabf6f54f6f55009997f62daca629a5386a9bf59d3895f349f074000ad8a11 7336696 openafs-client-dbgsym_1.8.9-1+deb12u1_ppc64el.deb 85400f9e790d97199f0b76ec87c9f8a10bc33464b93bc89e02fba7212fb76f0c 2052080 openafs-client_1.8.9-1+deb12u1_ppc64el.deb 3c50f62704e4401b149bc793b0a74a488a0d7c4891b042124a462bf0a61c801d 2047852 openafs-dbserver-dbgsym_1.8.9-1+deb12u1_ppc64el.deb 38731e89c0ab02f56d218dee2c6c016c3396815495823a0c2cf8d272ab945190 589232 openafs-dbserver_1.8.9-1+deb12u1_ppc64el.deb 7f163f91fcaeca7d4d83e1f244ec10e218b611496d7c63e218ac665bca5f1607 7769464 openafs-fileserver-dbgsym_1.8.9-1+deb12u1_ppc64el.deb ac0ad720cbb70be242fb2708f69d7b200d4254374a4d5d9cc58c546757e178a6 1338240 openafs-fileserver_1.8.9-1+deb12u1_ppc64el.deb 74a86ddbf209335d3860f804382b2990e74b8bbd5cf474c9b360c4069d743693 806612 openafs-fuse-dbgsym_1.8.9-1+deb12u1_ppc64el.deb 4bfd7bc0042f488116282191d3a49fa304e1452065155277ad382f099bc9365a 288052 openafs-fuse_1.8.9-1+deb12u1_ppc64el.deb a89fb2f8902569f89d23ccd8abb991b8df08985dd6eda6587d160f0c667d3e63 1279792 openafs-krb5-dbgsym_1.8.9-1+deb12u1_ppc64el.deb 426bd34e957fe3d317787c08db675752064ffae91fe30bd3fa763233c4feb7c0 331220 openafs-krb5_1.8.9-1+deb12u1_ppc64el.deb 55c6e01faa3fb2e4372d00b1567287772864258afc64946e4c6f2e119f18cf01 13436 openafs_1.8.9-1+deb12u1_ppc64el-buildd.buildinfo Files: 9643fafcf0136bd7424373206c7d1ecd 415200 debug optional libafsauthent2-dbgsym_1.8.9-1+deb12u1_ppc64el.deb 13cc70cc6e399edf40b9d6daaab9ecd6 217716 libs optional libafsauthent2_1.8.9-1+deb12u1_ppc64el.deb 555406ce2bc44fbe6597f0840f82d6d8 391544 debug optional libafsrpc2-dbgsym_1.8.9-1+deb12u1_ppc64el.deb e0b720d33d4a6a786eea198f1e470d08 198524 libs optional libafsrpc2_1.8.9-1+deb12u1_ppc64el.deb c530a568d3ac32e51c0b6d867c900eac 7264 debug optional libkopenafs2-dbgsym_1.8.9-1+deb12u1_ppc64el.deb d3628e487e8ed53a0030970dbf986bc6 82352 libs optional libkopenafs2_1.8.9-1+deb12u1_ppc64el.deb 2ad10893aaf433a86d5eae07e3fb3111 79364 debug optional libopenafs-dev-dbgsym_1.8.9-1+deb12u1_ppc64el.deb 1ae3d46f1b7ffd7c06026220b8c71235 1651888 libdevel optional libopenafs-dev_1.8.9-1+deb12u1_ppc64el.deb c0f90310164cb7e51d42863358ff558f 7336696 debug optional openafs-client-dbgsym_1.8.9-1+deb12u1_ppc64el.deb 883dc4caf9e75530e99effa46bf4bd5c 2052080 net optional openafs-client_1.8.9-1+deb12u1_ppc64el.deb 7c8c704ffdde9f97047def3f31101193 2047852 debug optional openafs-dbserver-dbgsym_1.8.9-1+deb12u1_ppc64el.deb 1835725cdb1ec63d01058dfc4c38f758 589232 net optional openafs-dbserver_1.8.9-1+deb12u1_ppc64el.deb c3e25faffdd252bbf39bd28997d0a36f 7769464 debug optional openafs-fileserver-dbgsym_1.8.9-1+deb12u1_ppc64el.deb 853d1260836a6b5061e60ecd14f7c3f8 1338240 net optional openafs-fileserver_1.8.9-1+deb12u1_ppc64el.deb 6cda31613dfab9b670373de006200e5f 806612 debug optional openafs-fuse-dbgsym_1.8.9-1+deb12u1_ppc64el.deb ddb75fb96baa24f82103b3d1fddb947a 288052 net optional openafs-fuse_1.8.9-1+deb12u1_ppc64el.deb 0695555eb5463391232834cd036b9dcb 1279792 debug optional openafs-krb5-dbgsym_1.8.9-1+deb12u1_ppc64el.deb 9f719faf3822ddef60854ade63b149e7 331220 net optional openafs-krb5_1.8.9-1+deb12u1_ppc64el.deb dccb3d9550ebdbbc080c55da468757df 13436 net optional openafs_1.8.9-1+deb12u1_ppc64el-buildd.buildinfo -----BEGIN PGP SIGNATURE----- iQIzBAEBCgAdFiEE0YcVZfZCWQv84jpRNcqbeolus3sFAmdtZiYACgkQNcqbeolu s3tq2A//ZNHcZIj3M7XVaeC8VpjTfYWs7qpbkBsALRLMl7ItsSdMKa5Bf5vdu9k9 +1B6yIBwpPjO/9qAre0KeIgLOZznjRizijG0ywgtS3Bk/0atQ8UD7rjV+sgv4vlQ 8gt1G9hioWz/owk+CmBHH5cf+HphFN8oGwo2Kb+NgeImopBjwJ+keD+ur6WWKG2D /8dHNO0sdwJpNpQj3RedFGnKrcC+xREy5+wXD4nubhiVj5G5baD4QfVNbqMEa5bh c31yFcSWnJWkGuhF+7IMQP40mj1QbOMQG4N3hPxyhNyZu+3JIJQ2dlOTrD1g5Jis FT82+4hWujv6OD8MWvS+GmvScJKKvZ7ykEVVnbTgPD+pIkkjW0+cck43V1S+zhsE WCv7IUqsnX/0BNnJQcZXy5nygbt6SC1a6LvVaI0bAOJxP9jsGJxzVQjd8TnxTdhD s9Xzx8oJYmjQYCvIcFAWhmR76fjK5QlmWtCC8fehRi52Np03wVsN8+7L151qqvCO zAIPJw4aJBqzqQCBrWlXMcEEH8wtZRYYQWDN1n7PIHItE7jDpMoqr5jGU1P4m9ra jxeFNeeUbjJWhM59kzgnBfSrlF0AAEyxYCAhxmf1SH7hZ5GFnQzvfWH49Ez2zYyD jGRsn6zTJC2wX0VtnB/30SeNsURVB1VGemmRw03TVW+6VgeQ9ts= =5PQo -----END PGP SIGNATURE-----