Launchpad.net

CVE 2015-3285

The pioctl for the OSD FS command in OpenAFS before 1.6.13 uses the wrong pointer when writing the results of the RPC, which allows local users to cause a denial of service (memory corruption and kernel panic) via a crafted OSD FS command.

Related bugs and status

CVE-2015-3285 (Candidate) is related to these bugs:

Bug #1481373: Security bugs "DSA-3320-1 openafs -- security update"

Summary				In	Importance	Status
	1481373	Security bugs "DSA-3320-1 openafs -- security update"		openafs (Ubuntu)	Medium	Fix Released

Bug #1513461: OPENAFS-SA-2015-007 "Tattletale"

		In	Importance	Status
1513461	OPENAFS-SA-2015-007 "Tattletale"	openafs (Ubuntu)	High	Fix Released
1513461	OPENAFS-SA-2015-007 "Tattletale"	openafs (Ubuntu Wily)	Undecided	Confirmed
1513461	OPENAFS-SA-2015-007 "Tattletale"	openafs (Ubuntu Trusty)	Undecided	Fix Released
1513461	OPENAFS-SA-2015-007 "Tattletale"	openafs (Ubuntu Xenial)	High	Fix Released
1513461	OPENAFS-SA-2015-007 "Tattletale"	openafs (Ubuntu Precise)	Undecided	Fix Released
1513461	OPENAFS-SA-2015-007 "Tattletale"	openafs (Ubuntu Vivid)	Undecided	Confirmed

See the

CVE page on Mitre.org for more details.

Launchpad.net

CVE 2015-3285

Related bugs and status

Related bugs

References