Описание
OpenAFS 1.6.19 and earlier allows remote attackers to obtain sensitive directory information via vectors involving the (1) client cache partition, (2) fileserver vice partition, or (3) certain RPC responses.
Пакеты
| Пакет | Статус | Версия исправления | Релиз | Тип |
|---|---|---|---|---|
| openafs | fixed | 1.6.20-1 | package | |
| openafs | fixed | 1.6.9-2+deb8u6 | jessie | package |
Примечания
https://www.openafs.org/pages/security/OPENAFS-SA-2016-003.txt
Upstream patch: https://www.openafs.org/pages/security/openafs-sa-2016-003-master.patch (master)
Upstream patch: https://www.openafs.org/pages/security/openafs-sa-2016-003.patch
https://www.openwall.com/lists/oss-security/2016/12/01/12
EPSS
Связанные уязвимости
OpenAFS 1.6.19 and earlier allows remote attackers to obtain sensitive directory information via vectors involving the (1) client cache partition, (2) fileserver vice partition, or (3) certain RPC responses.
OpenAFS 1.6.19 and earlier allows remote attackers to obtain sensitive directory information via vectors involving the (1) client cache partition, (2) fileserver vice partition, or (3) certain RPC responses.
OpenAFS 1.6.19 and earlier allows remote attackers to obtain sensitive directory information via vectors involving the (1) client cache partition, (2) fileserver vice partition, or (3) certain RPC responses.
EPSS