-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Format: 1.8 Date: Wed, 25 Dec 2024 21:19:02 +0100 Source: openafs Binary: libafsauthent2 libafsauthent2-dbgsym libafsrpc2 libafsrpc2-dbgsym libkopenafs2 libkopenafs2-dbgsym libopenafs-dev libopenafs-dev-dbgsym openafs-client openafs-client-dbgsym openafs-dbserver openafs-dbserver-dbgsym openafs-fileserver openafs-fileserver-dbgsym openafs-fuse openafs-fuse-dbgsym openafs-krb5 openafs-krb5-dbgsym Architecture: s390x Version: 1.8.9-1+deb12u1 Distribution: bookworm-security Urgency: high Maintainer: s390x Build Daemon (zandonai) Changed-By: Salvatore Bonaccorso Description: libafsauthent2 - AFS distributed file system runtime library (authentication) libafsrpc2 - AFS distributed file system runtime library (RPC layer) libkopenafs2 - AFS distributed file system runtime library (PAGs) libopenafs-dev - AFS distributed filesystem development libraries openafs-client - AFS distributed filesystem client support openafs-dbserver - AFS distributed filesystem database server openafs-fileserver - AFS distributed filesystem file server openafs-fuse - AFS distributed file system experimental FUSE client openafs-krb5 - AFS distributed filesystem Kerberos 5 integration Closes: 1087406 1087407 Changes: openafs (1.8.9-1+deb12u1) bookworm-security; urgency=high . * Non-maintainer upload by the Security Team. * afs: Properly type afs_osi_suser cred arg * Theft of credentials in Unix client PAGs (CVE-2024-10394) (Closes: #1087406, #1087407) * Fileserver crash and possible information leak on StoreACL/FetchACL (CVE-2024-10396) (Closes: #1087406, #1087407) * Preallocated buffer overflows in XDR responses (CVE-2024-10397) (Closes: #1087406, #1087407) Checksums-Sha1: 4e67a12b0c0630c1bfe3a5f747652ad1dadd792c 396788 libafsauthent2-dbgsym_1.8.9-1+deb12u1_s390x.deb 9457b8159b3b4d667b3d9beba63da283fde1c2f3 203304 libafsauthent2_1.8.9-1+deb12u1_s390x.deb e857703ca89fa936510f988d91083f84cd91bcb4 371184 libafsrpc2-dbgsym_1.8.9-1+deb12u1_s390x.deb 130bdc6f413295a8cc01ad921abebc3f0eb1689b 187992 libafsrpc2_1.8.9-1+deb12u1_s390x.deb 455f9da1e68b0981e4ba2ebcf403b8b6fe0d467c 7120 libkopenafs2-dbgsym_1.8.9-1+deb12u1_s390x.deb 1df58f35c0344e6021edaf436c1b75a0d0907e1e 82148 libkopenafs2_1.8.9-1+deb12u1_s390x.deb 489e78facb32329e2413a823464d644a332bd271 77744 libopenafs-dev-dbgsym_1.8.9-1+deb12u1_s390x.deb f28672aad84328b876a597a478323812b42183c1 1415820 libopenafs-dev_1.8.9-1+deb12u1_s390x.deb 060d8bfe24d5b515eb7017f5ccd29dcb46cffc6d 6898648 openafs-client-dbgsym_1.8.9-1+deb12u1_s390x.deb e418964f05a28a9f7f8332dc1810e71dd5b40096 1979804 openafs-client_1.8.9-1+deb12u1_s390x.deb 007bfc573beb686c502faa814de3099c423eb524 1902460 openafs-dbserver-dbgsym_1.8.9-1+deb12u1_s390x.deb 4d846e86116acbb8e9921b37fa8f35f148254845 546000 openafs-dbserver_1.8.9-1+deb12u1_s390x.deb 6dcf3d9648fa4687dad719fa92617a0c53d4ffa0 7405924 openafs-fileserver-dbgsym_1.8.9-1+deb12u1_s390x.deb 6d095ca19936507d753a363253d1a7727785c616 1261032 openafs-fileserver_1.8.9-1+deb12u1_s390x.deb a9e671162918f37fe335c5bcbe1f9e79627f8e86 783496 openafs-fuse-dbgsym_1.8.9-1+deb12u1_s390x.deb ec254a4a869a1f8a031209b3a010364fae2b6a75 273324 openafs-fuse_1.8.9-1+deb12u1_s390x.deb 606b104dee7a3d12807187052e9d971d872722e2 1212260 openafs-krb5-dbgsym_1.8.9-1+deb12u1_s390x.deb 28a722241d4a5f9ef1a98b3c69f051f5610c241b 314720 openafs-krb5_1.8.9-1+deb12u1_s390x.deb 86caab8808fff883ec6e5f16c10a49f94394fa1c 13223 openafs_1.8.9-1+deb12u1_s390x-buildd.buildinfo Checksums-Sha256: 87c22e4c8420ee12072b727d6a86d5e1228da17fc93a703857d2be20a94dc695 396788 libafsauthent2-dbgsym_1.8.9-1+deb12u1_s390x.deb 24446d51990a666a1b6202b3cb6b115092ee6b2d9b8ec8871d2cbdb5ad81913d 203304 libafsauthent2_1.8.9-1+deb12u1_s390x.deb 60c5407599d446c0dedfd4fe7efb5023cea1a320706c623d28bcd3690730d76a 371184 libafsrpc2-dbgsym_1.8.9-1+deb12u1_s390x.deb 87062992af8ccb0e397829d2a03f8447579bf34d77787657bd047bb987c93a10 187992 libafsrpc2_1.8.9-1+deb12u1_s390x.deb 9dca5f1b864784613c16fc4842bcd51b4b4b3a35ddca297b93c71110dceba428 7120 libkopenafs2-dbgsym_1.8.9-1+deb12u1_s390x.deb f7b6d5919df464a4aa17b41c898b65f33afc17c9dfac523866d74a79c99065c4 82148 libkopenafs2_1.8.9-1+deb12u1_s390x.deb 9d5373b6c6f373fd6e687457c9a8f194628fff7193ba75dcf47ce7db33025639 77744 libopenafs-dev-dbgsym_1.8.9-1+deb12u1_s390x.deb 12fa462cf38229c547d2d7227a5227b71189f0c6cebfb85ce75bc4d532331578 1415820 libopenafs-dev_1.8.9-1+deb12u1_s390x.deb 8097797c40b8efe01b0949919fc37b292db2cf5e52d30009393d44001e8c8469 6898648 openafs-client-dbgsym_1.8.9-1+deb12u1_s390x.deb 18de502e0a62291185c639acd91de1a27bc35fad05dd90e8acd188ace45b717f 1979804 openafs-client_1.8.9-1+deb12u1_s390x.deb b9a496d2f1ad9a686df3124cdaa524ec9b3136d1f4e5759dd12ecdcaf47d8fe5 1902460 openafs-dbserver-dbgsym_1.8.9-1+deb12u1_s390x.deb 89482717b65c5eea72b1dba0020342eb0fb928b929237d29dcb49c4bb38598e8 546000 openafs-dbserver_1.8.9-1+deb12u1_s390x.deb e8248bfeb73b214457bdb3cc2f4a4a0818b4f2d395c4951f2298ee778a88a759 7405924 openafs-fileserver-dbgsym_1.8.9-1+deb12u1_s390x.deb 0073be586c88c27feeadd000ebfd68b6412d806888badc112cee71d2d53c971d 1261032 openafs-fileserver_1.8.9-1+deb12u1_s390x.deb 361be00688f4f72e4385a576abde15a0aaac792895ee33e1b8ac8220075e8d6b 783496 openafs-fuse-dbgsym_1.8.9-1+deb12u1_s390x.deb e99d5570add5d0be87a1a11488b22dd1b9c6d00acdecf00144ba29fce4170cb4 273324 openafs-fuse_1.8.9-1+deb12u1_s390x.deb 12337555cc99eede243d1124bbf81e8ca1e9d43eb65cc539a55d206ff2683355 1212260 openafs-krb5-dbgsym_1.8.9-1+deb12u1_s390x.deb cc3c7d8490d12eed3ea366bccbd6a6207b49f9cd1c10ab4ce19f78c92c6d7a95 314720 openafs-krb5_1.8.9-1+deb12u1_s390x.deb f0b26d0e6a7b1cb419016d6f6c1dbf5c4b4710acfba0a7d3c5df0fce0c47d40e 13223 openafs_1.8.9-1+deb12u1_s390x-buildd.buildinfo Files: fc8cbbfd8c045481fe43c0d8b7b8d7a0 396788 debug optional libafsauthent2-dbgsym_1.8.9-1+deb12u1_s390x.deb b049e2a17f37a3b01fb122afc5f59a0b 203304 libs optional libafsauthent2_1.8.9-1+deb12u1_s390x.deb bd22cc78fad5f788184931f1278a094d 371184 debug optional libafsrpc2-dbgsym_1.8.9-1+deb12u1_s390x.deb ca97f0e30925bf88f1d4837cbd35d224 187992 libs optional libafsrpc2_1.8.9-1+deb12u1_s390x.deb 78fcdd9e69fdb32fd36f22c0a936226d 7120 debug optional libkopenafs2-dbgsym_1.8.9-1+deb12u1_s390x.deb 36442a30e7b193d6e0518fe9c44e5f59 82148 libs optional libkopenafs2_1.8.9-1+deb12u1_s390x.deb ee3c0386e7b675b51bb06bd51df0e8fe 77744 debug optional libopenafs-dev-dbgsym_1.8.9-1+deb12u1_s390x.deb 121ec24c6136614ff24499cf41c7b0ed 1415820 libdevel optional libopenafs-dev_1.8.9-1+deb12u1_s390x.deb 2bc31c6f6fa7e8cbf9cf3d970f463ab1 6898648 debug optional openafs-client-dbgsym_1.8.9-1+deb12u1_s390x.deb 511d3fd1a9021992a5054a86549690eb 1979804 net optional openafs-client_1.8.9-1+deb12u1_s390x.deb b3b26e0a5e73e9d38fac5e8808d41cb7 1902460 debug optional openafs-dbserver-dbgsym_1.8.9-1+deb12u1_s390x.deb 6879c37d297191c09d1aba2d66289972 546000 net optional openafs-dbserver_1.8.9-1+deb12u1_s390x.deb ff6ca1d901bab3c80bc7e6e30a602694 7405924 debug optional openafs-fileserver-dbgsym_1.8.9-1+deb12u1_s390x.deb f154b265868d7008224b00a9e706dc8e 1261032 net optional openafs-fileserver_1.8.9-1+deb12u1_s390x.deb dfb268d2e5f82bd6fe8087ff611e0ad4 783496 debug optional openafs-fuse-dbgsym_1.8.9-1+deb12u1_s390x.deb b46ddd4fd0703a3094a228a6bb501c8e 273324 net optional openafs-fuse_1.8.9-1+deb12u1_s390x.deb 68628e3a1ca3bf40efb7bf65b45c86f4 1212260 debug optional openafs-krb5-dbgsym_1.8.9-1+deb12u1_s390x.deb 9cfef04278cd6ae00b11a4babe1e4487 314720 net optional openafs-krb5_1.8.9-1+deb12u1_s390x.deb 0f9a9b1d1bd5c6b4b47c58169e1238e8 13223 net optional openafs_1.8.9-1+deb12u1_s390x-buildd.buildinfo -----BEGIN PGP SIGNATURE----- iQIzBAEBCgAdFiEEu0D/YpnnSxv8epH9AKOyQzsWVasFAmdtZmkACgkQAKOyQzsW Vav+HxAAnvpIfTvM+S+BXIQbDRwG7fPXuTida7rCCjC2lCHT4EDU6s9PDq4d2SKR 1unwTOGini2B9aF8TkwPqq2rS2FrjM1yUXN4mxtZYiRPOe3QzneELxgPF2WgkXb4 Sh50hx1vWBc6KIEqUDPuQbZQrjO+9qT0vJfLJT7E5D8bOKz6MS/D4FU+o4R9MyIR yx2Zuz/yFML5HX3pfyXKsdVcW5G+KpOD3BpWkSOD1nE/XvGz9crmFVKrhadUnWAd yF+pid8rRLa41n43SUrsNK/l6LZk7oE2rbNA692QLslANQ+8Bxx3XTyUDD/jdJkn 9RQjA4nQuVtDWXlBwrkQA3UBnxD7lwVSnigKA4zid+v9qiwJEZaQVF4WZqqKHBtB lO1x0oGOPwvH7Ae4KlGc2bfwNDWMg372ISPDSk5clwTtaDTa00/Pop03/A/qgEKV cJza44ttNCcaAxHCnl2lQsudb3F+G7ObP86f+34SXIQOQxWHA5ey+a6UE8yx3ouc 3sbp7C+jQGVktelYlicPvheyBKXhknFLjO9OmOQmMUlzfh1SbuRt/Pt99JjNT94S Kx/qfBny0oaBE4ocSRCMZnlfz9+0e4/i5UMmG778RqU6EZaLaMgpoHQUlvUQmjsH ZwAPfCtcASfEINAgqjQRONjbhNbUiWCAkv5ulC4krRBvVZQVKMI= =2E1q -----END PGP SIGNATURE-----