Sync openafs 1.8.2-1 (universe) from Debian unstable (main)
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
openafs (Ubuntu) |
Fix Released
|
Undecided
|
Unassigned |
Bug Description
Please sync openafs 1.8.2-1 (universe) from Debian unstable (main)
Explanation of the Ubuntu delta and why it can be dropped:
* Fix build with linux 4.18.
This Linux 4.18 patch was merged upstream as the only change between
1.8.1 and 1.8.1.1, and the security bugs were fixed as the only change
between 1.8.1.1 and 1.8.2, so this qualifies as an upstream
microrelease.
https:/
Changelog entries since current cosmic version 1.8.1-1ubuntu1:
openafs (1.8.2-1) unstable; urgency=high
* New upstream release 1.8.1.1:
- Support Linux 4.18.
* New upstream security release 1.8.2 (Closes: #908616):
- Fix OPENAFS-
(
- Fix OPENAFS-
(
- Fix OPENAFS-
consumption (CVE-2018-16949).
-- Anders Kaseorg <email address hidden> Tue, 11 Sep 2018 22:53:43 -0700
CVE References
tags: | added: upgrade-software-version |
This bug was fixed in the package openafs - 1.8.2-1
Sponsored for Anders Kaseorg (andersk)
---------------
openafs (1.8.2-1) unstable; urgency=high
* New upstream release 1.8.1.1: SA-2018- 001: unauthenticated volume operations via butc CVE-2018- 16947). SA-2018- 002: information leakage in RPC output variables CVE-2018- 16948). SA-2018- 003: denial of service due to excess resource
- Support Linux 4.18.
* New upstream security release 1.8.2 (Closes: #908616):
- Fix OPENAFS-
(
- Fix OPENAFS-
(
- Fix OPENAFS-
consumption (CVE-2018-16949).
-- Anders Kaseorg <email address hidden> Tue, 11 Sep 2018 22:53:43 -0700