* New upstream release.
- OPENAFS-SA-2009-001: Avoid a potential kernel memory overrun if more
items than requested are returned from an InlineBulk or BulkStatus
message. (CVE-2009-1251) (LP: #356861)
- OPENAFS-SA-2009-002: Avoid converting negative errors into invalid
kernel memory pointers. (CVE-2009-1250) (LP: #356861)
This bug was fixed in the package openafs - 1.4.9.dfsg1- 0+ubuntu1
--------------- dfsg1-0+ ubuntu1) jaunty; urgency=low
openafs (1.4.9.
* New upstream release. SA-2009- 001: Avoid a potential kernel memory overrun if more SA-2009- 002: Avoid converting negative errors into invalid
- OPENAFS-
items than requested are returned from an InlineBulk or BulkStatus
message. (CVE-2009-1251) (LP: #356861)
- OPENAFS-
kernel memory pointers. (CVE-2009-1250) (LP: #356861)
-- Anders Kaseorg <email address hidden> Tue, 07 Apr 2009 16:41:24 -0400