Your message dated Tue, 05 Dec 2017 17:04:49 +0000
with message-id <[email protected]>
and subject line Bug#883602: fixed in openafs 1.6.22-1
has caused the Debian Bug report #883602,
regarding OPENAFS-SA-2017-001: Rx assertion failure from insufficient input
validation
to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.
(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact [email protected]
immediately.)
--
883602: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=883602
Debian Bug Tracking System
Contact [email protected] with problems
--- Begin Message ---
Source: openafs
Version: 1.6.1-3+deb7u7
Tags: security upstream fixed-upstream pending
Severity: important
Upstream OpenAFS released security advisory OPENAFS-SA-2017-001
today; insufficient validation of data contained in Rx ack packets
leads to the use of an invalid MTU value, ultimately leading to an
assertion failure and application crash or kernel BUG.
--- End Message ---
--- Begin Message ---
Source: openafs
Source-Version: 1.6.22-1
We believe that the bug you reported is fixed in the latest version of
openafs, which is due to be installed in the Debian FTP archive.
A summary of the changes between this version and the previous one is
attached.
Thank you for reporting the bug, which will now be closed. If you
have further comments please address them to [email protected],
and the maintainer will reopen the bug report if appropriate.
Debian distribution maintenance software
pp.
Benjamin Kaduk <[email protected]> (supplier of updated openafs package)
(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing [email protected])
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512
Format: 1.8
Date: Tue, 05 Dec 2017 10:28:15 -0600
Source: openafs
Binary: openafs-client openafs-fuse openafs-kpasswd openafs-fileserver
openafs-dbserver openafs-doc openafs-krb5 libkopenafs1 libafsauthent1
libafsrpc1 libopenafs-dev openafs-modules-source openafs-modules-dkms
libpam-openafs-kaserver
Architecture: source amd64 all
Version: 1.6.22-1
Distribution: unstable
Urgency: high
Maintainer: Benjamin Kaduk <[email protected]>
Changed-By: Benjamin Kaduk <[email protected]>
Description:
libafsauthent1 - AFS distributed file system runtime library (authentication)
libafsrpc1 - AFS distributed file system runtime library (RPC layer)
libkopenafs1 - AFS distributed file system runtime library (PAGs)
libopenafs-dev - AFS distributed filesystem development libraries
libpam-openafs-kaserver - AFS distributed filesystem kaserver PAM module
openafs-client - AFS distributed filesystem client support
openafs-dbserver - AFS distributed filesystem database server
openafs-doc - AFS distributed filesystem documentation
openafs-fileserver - AFS distributed filesystem file server
openafs-fuse - AFS distributed file system experimental FUSE client
openafs-kpasswd - AFS distributed filesystem old password changing
openafs-krb5 - AFS distributed filesystem Kerberos 5 integration
openafs-modules-dkms - AFS distributed filesystem kernel module DKMS source
openafs-modules-source - AFS distributed filesystem kernel module source
Closes: 883602
Changes:
openafs (1.6.22-1) unstable; urgency=high
.
* New upstream security release:
- Fix for OPENAFS-SA-2017-001. (Closes: #883602)
- Improved support for recent Linux versions
Checksums-Sha1:
1fe8eb137bee011e728c80f913854f71e7ed78ac 3726 openafs_1.6.22-1.dsc
6e004a114a3debc5c3d5b28062872071ec36cdc2 6668764 openafs_1.6.22.orig.tar.xz
75632d5c8dce4a18bd7ac4da39b7afa44bb0abd3 136424 openafs_1.6.22-1.debian.tar.xz
3b16878861406a656f9d46346c39aa62be4dcfbe 578028
libafsauthent1-dbgsym_1.6.22-1_amd64.deb
6996c06e636ae31d11c28581df875df3d4907cee 230500
libafsauthent1_1.6.22-1_amd64.deb
96439ee70ccb071c4283ee4a587f9c30cdcfc12d 403328
libafsrpc1-dbgsym_1.6.22-1_amd64.deb
0bc2be28c8785ce8b7c9b7c41ad896bb8a37131f 215228 libafsrpc1_1.6.22-1_amd64.deb
24e55b793a33faa3199e59606a21305adf965f64 8268
libkopenafs1-dbgsym_1.6.22-1_amd64.deb
4a21b8d7a1caa9c8bae82ba91a0c1443497b2c13 102804 libkopenafs1_1.6.22-1_amd64.deb
9df0a6ba04b7164702c1c516ab417ba312962298 110640
libopenafs-dev-dbgsym_1.6.22-1_amd64.deb
aeaec071648e9c35c1fae5fd581989bf0d9fbe6c 1599044
libopenafs-dev_1.6.22-1_amd64.deb
9d71c19590b51a0c84bc2d2d523d734a87f966a6 1201980
libpam-openafs-kaserver-dbgsym_1.6.22-1_amd64.deb
eab94c72783914af0ddef4bd94e267b9fb474197 196852
libpam-openafs-kaserver_1.6.22-1_amd64.deb
035cc2c531177cb02ee97bc97c711fe0e5681016 9551660
openafs-client-dbgsym_1.6.22-1_amd64.deb
83445ef17d310bc537ae7a332936eecb9bdf1021 1992292
openafs-client_1.6.22-1_amd64.deb
0b1a39ad7da062784ad0e8d191e07ce2ba617e05 2418472
openafs-dbserver-dbgsym_1.6.22-1_amd64.deb
0d13266cd040e7c8cd42aeded33a8f78f49a30fe 472740
openafs-dbserver_1.6.22-1_amd64.deb
336402d9147aef18ed5d46c2bac0116b940d7d88 4001004 openafs-doc_1.6.22-1_all.deb
bdf39ac78ec025804c6db093fe9fba2d5b85e241 10172692
openafs-fileserver-dbgsym_1.6.22-1_amd64.deb
cae6bb5c7480f1c8bad445cbab3dc3937bdd0f96 1377712
openafs-fileserver_1.6.22-1_amd64.deb
44caec6b029e67fa6111a80392db5ff703a49fd2 1945212
openafs-fuse-dbgsym_1.6.22-1_amd64.deb
3974812660d279b23594f9397e19f9481d16a3b7 309140 openafs-fuse_1.6.22-1_amd64.deb
722c7598a9a0196b7d66441de80c37c7dc3d38e9 886988
openafs-kpasswd-dbgsym_1.6.22-1_amd64.deb
0aba86685225f032af5a5b5386b12c466bd03f59 206408
openafs-kpasswd_1.6.22-1_amd64.deb
25781bb0e6d4dc1de70475128091f55fa7cec627 997920
openafs-krb5-dbgsym_1.6.22-1_amd64.deb
294df2fa185340a431693371ab973366ad1dcfad 274648 openafs-krb5_1.6.22-1_amd64.deb
a53e8a4cd669cf7df14b4cc09b68dabfe74e2f60 952788
openafs-modules-dkms_1.6.22-1_all.deb
34a18de0109522b458205f4d2ea4e7fd347878f8 1161968
openafs-modules-source_1.6.22-1_all.deb
46bfea039a0e761b6391e0a89dfd39179d81cb6e 17188 openafs_1.6.22-1_amd64.buildinfo
Checksums-Sha256:
e7f2bfcb53e2c43168cf9757dd19ee440df7e8ae9f6230203ebd05c16fe03fe0 3726
openafs_1.6.22-1.dsc
0b1345117057172b7b8e248ecb446cf3b59d9f44dcdd65a24a9081c2c169020f 6668764
openafs_1.6.22.orig.tar.xz
0131827be700a5d96c765e3d2dbc9bae6e7db77e4638f764d57421793582d2df 136424
openafs_1.6.22-1.debian.tar.xz
37f37a029d5d13f84e757c443bc36422e798365d996806ae3ff1c0b6de6603f8 578028
libafsauthent1-dbgsym_1.6.22-1_amd64.deb
26476fd01e9f3a27d87087ee73286226fcda3543113f56e68b43807dff0deb4d 230500
libafsauthent1_1.6.22-1_amd64.deb
063f46ecc166075fec60a1cd5885c55e99895f0380d039ad354fd814e8e85f41 403328
libafsrpc1-dbgsym_1.6.22-1_amd64.deb
8a9213cbe9b0b1195bef8d81c2e177659bd9cb988c97678f61e334bfa85c0e86 215228
libafsrpc1_1.6.22-1_amd64.deb
2f8d7809bf775a357787b082e6ff013f9e4ad25e88d307f74bc63f300d1bb916 8268
libkopenafs1-dbgsym_1.6.22-1_amd64.deb
293db7d2d422a15265fdb618cc50890c09afe5b3f674617159b0bffe974953a8 102804
libkopenafs1_1.6.22-1_amd64.deb
82924fbd11e6da4fc5eca0df40b3dda43efaa95531af2870731748816bf77b73 110640
libopenafs-dev-dbgsym_1.6.22-1_amd64.deb
cac4cf80b55c2d3ae17ccd05f8905a561bfcbea77a6650127b5dcbecaaa19606 1599044
libopenafs-dev_1.6.22-1_amd64.deb
e45dc25fe9979c2652977296b4c728a8cf7ad45727659a4aaa38a3aa9b34af6f 1201980
libpam-openafs-kaserver-dbgsym_1.6.22-1_amd64.deb
687bfbb20f9bf75d9aacd61a984e9978bf1fe21d46343037e28e30e72e1ae225 196852
libpam-openafs-kaserver_1.6.22-1_amd64.deb
11160f329a1003278bedc26748986781199afd2a599b201a8173c42c46d24eb2 9551660
openafs-client-dbgsym_1.6.22-1_amd64.deb
9b953b309795eb71f6f904a9f5ad033d0880ae073bb256f3f17aa25defa05c13 1992292
openafs-client_1.6.22-1_amd64.deb
e2aa91d723d784cc30142f05d474b4f5f5db312b62a063908b057b608c033df9 2418472
openafs-dbserver-dbgsym_1.6.22-1_amd64.deb
2a915b01ea96bb8323992884ea8cf08d23e832a73e48f2a1e84031f03298c60f 472740
openafs-dbserver_1.6.22-1_amd64.deb
97a01eacf21202455546c5b5b0c7941a264ed917b1a33f3bd73ab7aa6abd52c7 4001004
openafs-doc_1.6.22-1_all.deb
dd2cb80842924704237d4189a72516bb32252ff343034f6a6e5bd08109f004a5 10172692
openafs-fileserver-dbgsym_1.6.22-1_amd64.deb
6022d119542118dc2d66d956a722df2069d862c8ca144830a71f3d95761ca085 1377712
openafs-fileserver_1.6.22-1_amd64.deb
59f897875c7ced83efe6be682cc90784f06053e07712158b1360d805b2d8ef48 1945212
openafs-fuse-dbgsym_1.6.22-1_amd64.deb
b37661b704792d021796ca4edc104a4d83b5f702532303dab531f7a3bbf2a345 309140
openafs-fuse_1.6.22-1_amd64.deb
4dcf5a0f11447a3d7c116de340bdc69d9836463c8021101077693337b1bc871f 886988
openafs-kpasswd-dbgsym_1.6.22-1_amd64.deb
848ac5254a0a7bdb7e1c6e527b45c98b3a9ab3fc6b0134571e91c6ac7077311e 206408
openafs-kpasswd_1.6.22-1_amd64.deb
19d094fa32d13b8501794a4188b19190add2c59ec5c22a71c01d19b7037e7f24 997920
openafs-krb5-dbgsym_1.6.22-1_amd64.deb
1575b4b6ad1fa708cfd404615870f5240c61847c759f411eadcc6211fd625b94 274648
openafs-krb5_1.6.22-1_amd64.deb
8de54421d2f8269d6cfe04a593c548a897b046716a8b3437041173cf26f1af0e 952788
openafs-modules-dkms_1.6.22-1_all.deb
c44f68f515804116739dc27431e34a538ff72a11f92d47b1bca93472faaa0746 1161968
openafs-modules-source_1.6.22-1_all.deb
80bcafb9f3137ab46ff30ae901781733fd6b6473054ccce5f189a62e20a22f94 17188
openafs_1.6.22-1_amd64.buildinfo
Files:
8a3b7dc7c3ad0319900bb269a4f3b724 3726 net optional openafs_1.6.22-1.dsc
427e618daf8b9675153710c19882007e 6668764 net optional
openafs_1.6.22.orig.tar.xz
3748acab8487679b8027396b6f3444c6 136424 net optional
openafs_1.6.22-1.debian.tar.xz
bba7d0d90551f2006be010fbf711a910 578028 debug optional
libafsauthent1-dbgsym_1.6.22-1_amd64.deb
958cd1e915422b11b2314396833a6bfd 230500 libs optional
libafsauthent1_1.6.22-1_amd64.deb
004339ac09c932271fea9d69a8c04b65 403328 debug optional
libafsrpc1-dbgsym_1.6.22-1_amd64.deb
7ae75b4f71d499e66bafa39a7c75f30d 215228 libs optional
libafsrpc1_1.6.22-1_amd64.deb
1896b7d52a08cfff2ed92283ee2495b3 8268 debug optional
libkopenafs1-dbgsym_1.6.22-1_amd64.deb
18b15860f183db0c41b4b40441c153cd 102804 libs optional
libkopenafs1_1.6.22-1_amd64.deb
c9a120476aee970f08ea076d565f38f1 110640 debug optional
libopenafs-dev-dbgsym_1.6.22-1_amd64.deb
82be46c0e7851f95f784b91158c16bf4 1599044 libdevel optional
libopenafs-dev_1.6.22-1_amd64.deb
aece4c5b677e43dc49d0fecbea106cb4 1201980 debug optional
libpam-openafs-kaserver-dbgsym_1.6.22-1_amd64.deb
6061a2c72ebf63d3ddfff6cc4bc18f36 196852 admin optional
libpam-openafs-kaserver_1.6.22-1_amd64.deb
539b08252252292c9129b3e09d98c6f7 9551660 debug optional
openafs-client-dbgsym_1.6.22-1_amd64.deb
c624b397037c2564766d2752217db017 1992292 net optional
openafs-client_1.6.22-1_amd64.deb
562cc53477cafdc4e80f35104b018731 2418472 debug optional
openafs-dbserver-dbgsym_1.6.22-1_amd64.deb
6d4dcc6b6521a5d8a041f811cf04ca9d 472740 net optional
openafs-dbserver_1.6.22-1_amd64.deb
256ad0826121ff6c0f80ff76309395c1 4001004 doc optional
openafs-doc_1.6.22-1_all.deb
1e065471fb9d484112521c15ec4f69a5 10172692 debug optional
openafs-fileserver-dbgsym_1.6.22-1_amd64.deb
a2d0b47e4738d5d57bd97686e1c2b303 1377712 net optional
openafs-fileserver_1.6.22-1_amd64.deb
39d894651554f00842b94a4d097ceb43 1945212 debug optional
openafs-fuse-dbgsym_1.6.22-1_amd64.deb
4042d8f3f054682779d30b53c66ae223 309140 net optional
openafs-fuse_1.6.22-1_amd64.deb
bf8c581fe2d98a7e90a70e41fdd7c6f8 886988 debug optional
openafs-kpasswd-dbgsym_1.6.22-1_amd64.deb
1d34f8417c6a45fa931e630d885bd0be 206408 net optional
openafs-kpasswd_1.6.22-1_amd64.deb
18ad6e2f79e5ea94089942e67ac91418 997920 debug optional
openafs-krb5-dbgsym_1.6.22-1_amd64.deb
2c84d9e0294e9f7ec0d4e21b48fedc96 274648 net optional
openafs-krb5_1.6.22-1_amd64.deb
48fca8c80993458a794acfa743545bb3 952788 kernel optional
openafs-modules-dkms_1.6.22-1_all.deb
638b29dc609f23f79fc7368a60917b6e 1161968 kernel optional
openafs-modules-source_1.6.22-1_all.deb
8303d0b2db12b839c9db18e0d5d8319b 17188 net optional
openafs_1.6.22-1_amd64.buildinfo
-----BEGIN PGP SIGNATURE-----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=bGp6
-----END PGP SIGNATURE-----
--- End Message ---
