See the URL I think this can be evaluated as a C3. CVS logs indicate that only a few patches make the difference between 1.4.5 and 1.4.6, so I think fast stabilization is an option.
Thanks for the report Stefaan. However I don't see any specific condition to make the issue exploitable, so it would be more like a B3. Arches, please test and mark stable net-fs/openafs-1.4.6. Target "alpha amd64 ppc ppc64 ~sparc x86"
x86 stable
(In reply to comment #1) > Thanks for the report Stefaan. However I don't see any specific condition to > make the issue exploitable, so it would be more like a B3. > Arches, please test and mark stable net-fs/openafs-1.4.6. Target "alpha amd64 > ppc ppc64 ~sparc x86" > And net-fs/openafs-kernel-1.4.6.
amd64 done.
Marked ppc/ppc64 stable.
Keyworded for alpha, closing bug. Thanks, everybody!
Please do not close security bugs. time for glsa decision. I tend to vote yes.
can someone please add "CVE-2007-6599" to the topic? i dont have the permissions needed to do that
Voting YES, request filed.
GLSA 200801-04