Ubuntu
openafs package

[openafs] [CVE-2007-6599] DoS vulnerability

Bug #182016 reported by disabled.user
256
Affects Status Importance Assigned to Milestone
openafs (Ubuntu)
New
Undecided
Unassigned

Bug Description

References:
DSA-1458-1 (http://www.debian.org/security/2008/dsa-1458)

Quoting:
"A race condition in the OpenAFS fileserver allows remote attackers to
cause a denial of service (daemon crash) by simultaneously acquiring and
giving back file callbacks, which causes the handler for the
GiveUpAllCallBacks RPC to perform linked-list operations without the
host_glock lock."

CVE References

To post a comment you must log in.
This report contains Public Security information  
Everyone can see this security related information.
Subscribing...

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.