OpenAFS: Arbitrary code execution
1.
Gentoo Linux Security Advisory
Version Information
| Advisory Reference |
GLSA 201101-05 / OpenAFS |
| Release Date |
January 16, 2011 |
| Latest Revision |
January 16, 2011: 01 |
| Impact |
normal |
| Exploitable |
remote |
| Package |
Vulnerable versions |
Unaffected versions |
Architecture(s) |
| net-fs/openafs |
<
1.4.9 |
>=
1.4.9 |
All supported architectures
|
Related bugreports:
#265538
Synopsis
The cache manager of OpenAFS contains several bugs resulting in remote
execution of arbitrary code.
2.
Impact Information
Background
OpenAFS is a distributed file system.
Description
Two vulnerabilities were discovered:
-
Simon Wilkinson discovered from a bug report by Toby Blake that the
cache manager of OpenAFS contains a heap-based buffer overflow which is
related to the use of the ERR_PTR macro (CVE-2009-1250).
- A
pointer dereference bug when using XDR arrays was discovered by Simon
Wilkinson, with assistance from Derrick Brashear and Jeffrey Altman.
(CVE-2009-1251).
Impact
The vulnerabilities might allow remote unauthenticated attackers to
cause a Denial of Service (system crash) and possibly execute arbitrary
code.
3.
Resolution Information
Workaround
There is no known workaround at this time.
Resolution
All OpenAFS users should upgrade to the latest version:
Code Listing 3.1: Resolution |
# emerge --sync
# emerge --ask --oneshot --verbose ">=net-fs/openafs-1.4.9"
|
4.
References
|
