Ubuntu
openafs package

openafs 1.6.1-2+ubuntu2.1 source package in Ubuntu

Changelog

openafs (1.6.1-2+ubuntu2.1) quantal-security; urgency=high

  * SECURITY UPDATE: Brute force DES attack permits compromise of AFS cell.
    vos -encrypt doesn't encrypt connection data.
    Buffer overflows which could cause a serverside denial of service.
    - openafs-sa-2013-001.patch: Fix fileserver buffer overflow when parsing
      client-supplied ACL entries and protect against client parsing of
      bad ACL entries. Thanks to Nickolai Zeldovich.
    - openafs-sa-2013-002.patch: Fix ptserver buffer overflow via integer
      overflow in the IdToName RPC. Thanks to Nickolai Zeldovich
    - 0001-Add-rxkad-server-hook-function-to-decrypt-more-types.patch
    - 0002-New-optional-rxkad-functionality-for-decypting-krb5-.patch
    - 0003-Integrate-keytab-based-decryption-into-afsconf_Build.patch
    - 0004-Derive-DES-fcrypt-session-key-from-other-key-types.patch
    - 0005-Move-akimpersonate-to-libauth.patch
    - 0006-Clean-up-akimpersonate-and-use-for-server-to-server.patch
    - 0007-auth-Do-not-always-fallback-to-noauth.patch
    - 0008-Avoid-calling-afsconf_GetLatestKey-directly.patch
    - 0009-Reload-rxkad.keytab-on-CellServDB-modification.patch
    - 0010-Add-support-for-deriving-DES-keys-to-klog.krb5.patch
    - 0011 skipped because it was a version bump
    - 0012-ubik-Fix-encryption-selection-in-ugen.patch
    - Thanks to Chaskiel Grundman, Alexander Chernyakhovsky, Ben Kaduk,
        Andrew Deason, and Michael Meffie for the above patch series.
    - swap-libs.patch: Resolve FTBFS with newer toolchains. Thanks to Anders
        Kaseorg.
    - OPENAFS-SA-2013-001
    - OPENAFS-SA-2013-002
    - OPENAFS-SA-2013-003
    - OPENAFS-SA-2013-004
    - CVE-2013-1794
    - CVE-2013-1795
    - CVE-2013-4134
    - CVE-2013-4135
    - LP: #1145560
    - LP: #1204195
  * Remove debian/source/options, which previously force-collaped the above
    patches into one debian/patches/debian-changes and caused confusing patch
    failures later. Thanks to Colin Watson for help with debugging and to
    Seth Arnold for identifying the failure.
 -- Luke Faraone <email address hidden>   Wed, 24 Jul 2013 11:16:48 -0400

Upload details

Uploaded by:: Luke Faraone on 2013-07-24

Sponsored by:: Seth Arnold

Uploaded to:: Quantal

Original maintainer:: Ubuntu Developers

Architectures:: alpha amd64 arm armel armhf i386 ia64 powerpc powerpcspe ppc64 s390 s390x sparc lpia all

Section:: net

Urgency:: Very Urgent

See full publishing history Publishing

Series	Pocket	Published	Component	Section

Builds

Quantal: amd64 armel armhf i386 powerpc

Downloads

File	Size	SHA-256 Checksum
openafs_1.6.1.orig.tar.gz	8.7 MiB	6152cddb407f7192bdd98215486c8af014c488d84d9a9a10b6b444b957c95b80
openafs_1.6.1-2+ubuntu2.1.debian.tar.gz	187.4 KiB	30a33858d2ab689d25501b70ec909de63a5f0d4a61b2700dcd8639d722243999
openafs_1.6.1-2+ubuntu2.1.dsc	2.6 KiB	6b27eb32365f38a27abbe0bc634b61fe917d65a3adc89ea14c7bae1f0e062278

Available diffs

diff from 1.6.1-2ubuntu2 (in Ubuntu) to 1.6.1-2+ubuntu2.1 (38.2 KiB)

View changes file

Binary packages built by this source

libafsauthent1: No summary available for libafsauthent1 in ubuntu quantal.: No description available for libafsauthent1 in ubuntu quantal.

libafsrpc1: No summary available for libafsrpc1 in ubuntu quantal.: No description available for libafsrpc1 in ubuntu quantal.

libkopenafs1: No summary available for libkopenafs1 in ubuntu quantal.: No description available for libkopenafs1 in ubuntu quantal.

libopenafs-dev: No summary available for libopenafs-dev in ubuntu quantal.: No description available for libopenafs-dev in ubuntu quantal.

libpam-openafs-kaserver: No summary available for libpam-openafs-kaserver in ubuntu quantal.: No description available for libpam-openafs-kaserver in ubuntu quantal.

openafs-client: No summary available for openafs-client in ubuntu quantal.: No description available for openafs-client in ubuntu quantal.

openafs-dbg: No summary available for openafs-dbg in ubuntu quantal.: No description available for openafs-dbg in ubuntu quantal.

openafs-dbserver: No summary available for openafs-dbserver in ubuntu quantal.: No description available for openafs-dbserver in ubuntu quantal.

openafs-doc: No summary available for openafs-doc in ubuntu quantal.: No description available for openafs-doc in ubuntu quantal.

openafs-fileserver: No summary available for openafs-fileserver in ubuntu quantal.: No description available for openafs-fileserver in ubuntu quantal.

openafs-fuse: No summary available for openafs-fuse in ubuntu quantal.: No description available for openafs-fuse in ubuntu quantal.

openafs-kpasswd: No summary available for openafs-kpasswd in ubuntu quantal.: No description available for openafs-kpasswd in ubuntu quantal.

openafs-krb5: No summary available for openafs-krb5 in ubuntu quantal.: No description available for openafs-krb5 in ubuntu quantal.

openafs-modules-dkms: No summary available for openafs-modules-dkms in ubuntu quantal.: No description available for openafs-modules-dkms in ubuntu quantal.

openafs-modules-source: No summary available for openafs-modules-source in ubuntu quantal.: No description available for openafs-modules-source in ubuntu quantal.

Ubuntuopenafs package

openafs 1.6.1-2+ubuntu2.1 source package in Ubuntu

Changelog

Upload details

See full publishing history Publishing

Builds

Downloads

Available diffs

Binary packages built by this source

Ubuntu
openafs package