Source: openafs Version: 1.6.1-3+deb7u7 Tags: security upstream fixed-upstream pending Severity: important
Upstream OpenAFS released security advisory OPENAFS-SA-2017-001 today; insufficient validation of data contained in Rx ack packets leads to the use of an invalid MTU value, ultimately leading to an assertion failure and application crash or kernel BUG.