Bug 203573 (CVE-2007-6599)

Comment 1 Pierre-Yves Rofes (RETIRED) 2007-12-28 23:25:52 UTC

Thanks for the report Stefaan. However I don't see any specific condition to make the issue exploitable, so it would be more like a B3.
Arches, please test and mark stable net-fs/openafs-1.4.6. Target "alpha amd64 ppc ppc64 ~sparc x86"

Comment 2 Markus Meier 2007-12-29 23:07:21 UTC

x86 stable

Comment 3 Peter Weller (RETIRED) 2007-12-31 17:49:12 UTC

(In reply to comment #1)
> Thanks for the report Stefaan. However I don't see any specific condition to
> make the issue exploitable, so it would be more like a B3.
> Arches, please test and mark stable net-fs/openafs-1.4.6. Target "alpha amd64
> ppc ppc64 ~sparc x86"
> 

And net-fs/openafs-kernel-1.4.6.

Comment 4 Peter Weller (RETIRED) 2007-12-31 19:04:05 UTC

amd64 done.

Comment 5 Joe Jezak (RETIRED) 2008-01-01 16:47:41 UTC

Marked ppc/ppc64 stable.

Comment 6 Stefaan De Roeck (RETIRED) 2008-01-02 14:10:37 UTC

Keyworded for alpha, closing bug.  Thanks, everybody!

Comment 7 Pierre-Yves Rofes (RETIRED) 2008-01-02 14:39:24 UTC

Please do not close security bugs.
time for glsa decision. I tend to vote yes.

can someone please add "CVE-2007-6599" to the topic?
i dont have the permissions needed to do that

Comment 9 Robert Buchholz (RETIRED) 2008-01-05 00:13:47 UTC

Voting YES, request filed.

Comment 10 Pierre-Yves Rofes (RETIRED) 2008-01-09 22:02:38 UTC

GLSA 200801-04