CVE-2015-3283
Published: 12 August 2015
OpenAFS before 1.6.13 allows remote attackers to spoof bos commands via unspecified vectors.
Notes
Author | Note |
---|---|
seth-arnold | The patch forces encryption; this likely requires coordinated update on all nodes in a network. |
Priority
Status
Package | Release | Status |
---|---|---|
openafs Launchpad, Ubuntu, Debian |
precise |
Released
(1.6.1-1+ubuntu0.6)
|
trusty |
Released
(1.6.7-1ubuntu1.1)
|
|
upstream |
Released
(1.6.13)
|
|
vivid |
Ignored
(end of life)
|
|
wily |
Not vulnerable
(1.6.14-1)
|
|
Patches: upstream: http://www.openafs.org/security/openafs-sa-2015-002.patch |