The cache manager in the client in OpenAFS 1.0 through 1.4.8 and 1.5.0 through 1.5.58, and IBM AFS 3.6 before Patch 19, on Linux allows remote attackers to cause a denial of service (system crash) via an RX response with a large error-code value that is interpreted as a pointer and dereferenced, related to use of the ERR_PTR macro.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Afs | Ibm | * | 3.6 |
Afs | Ibm | 3.6 | 3.6 |
Afs | Ibm | 3.6 | 3.6 |
Afs | Ibm | 3.6 | 3.6 |
Afs | Ibm | 3.6 | 3.6 |
Afs | Ibm | 3.6 | 3.6 |
Afs | Ibm | 3.6 | 3.6 |
Openafs | Openafs | 1.0 | 1.0 |
Openafs | Openafs | 1.0.1 | 1.0.1 |
Openafs | Openafs | 1.0.2 | 1.0.2 |
Openafs | Openafs | 1.0.3 | 1.0.3 |
Openafs | Openafs | 1.0.4 | 1.0.4 |
Openafs | Openafs | 1.0.4a | 1.0.4a |
Openafs | Openafs | 1.1 | 1.1 |
Openafs | Openafs | 1.1.0 | 1.1.0 |
Openafs | Openafs | 1.1.1 | 1.1.1 |
Openafs | Openafs | 1.1.1a | 1.1.1a |
Openafs | Openafs | 1.2 | 1.2 |
Openafs | Openafs | 1.2.1 | 1.2.1 |
Openafs | Openafs | 1.2.2 | 1.2.2 |
Openafs | Openafs | 1.2.2a | 1.2.2a |
Openafs | Openafs | 1.2.2b | 1.2.2b |
Openafs | Openafs | 1.2.3 | 1.2.3 |
Openafs | Openafs | 1.2.4 | 1.2.4 |
Openafs | Openafs | 1.2.5 | 1.2.5 |
Openafs | Openafs | 1.2.6 | 1.2.6 |
Openafs | Openafs | 1.2.7 | 1.2.7 |
Openafs | Openafs | 1.2.8 | 1.2.8 |
Openafs | Openafs | 1.2.9 | 1.2.9 |
Openafs | Openafs | 1.2.10 | 1.2.10 |
Openafs | Openafs | 1.2.11 | 1.2.11 |
Openafs | Openafs | 1.2.13 | 1.2.13 |
Openafs | Openafs | 1.3 | 1.3 |
Openafs | Openafs | 1.3.1 | 1.3.1 |
Openafs | Openafs | 1.3.2 | 1.3.2 |
Openafs | Openafs | 1.3.5 | 1.3.5 |
Openafs | Openafs | 1.3.70 | 1.3.70 |
Openafs | Openafs | 1.3.74 | 1.3.74 |
Openafs | Openafs | 1.3.77 | 1.3.77 |
Openafs | Openafs | 1.3.81 | 1.3.81 |
Openafs | Openafs | 1.4 | 1.4 |
Openafs | Openafs | 1.4.0 | 1.4.0 |
Openafs | Openafs | 1.4.3 | 1.4.3 |
Openafs | Openafs | 1.4.4 | 1.4.4 |
Openafs | Openafs | 1.4.5 | 1.4.5 |
Openafs | Openafs | 1.4.6 | 1.4.6 |
Openafs | Openafs | 1.4.7 | 1.4.7 |
Openafs | Openafs | 1.4.7_pre1 | 1.4.7_pre1 |
Openafs | Openafs | 1.4.7_pre2 | 1.4.7_pre2 |
Openafs | Openafs | 1.4.7_pre3 | 1.4.7_pre3 |
Openafs | Openafs | 1.4.7_pre4 | 1.4.7_pre4 |
Openafs | Openafs | 1.4.7_pre5 | 1.4.7_pre5 |
Openafs | Openafs | 1.4.8 | 1.4.8 |
Openafs | Openafs | 1.4.8_pre1 | 1.4.8_pre1 |
Openafs | Openafs | 1.4.8_pre2 | 1.4.8_pre2 |
Openafs | Openafs | 1.4.8_pre3 | 1.4.8_pre3 |
Openafs | Openafs | 1.5 | 1.5 |
Openafs | Openafs | 1.5.16 | 1.5.16 |
Openafs | Openafs | 1.5.17 | 1.5.17 |
Openafs | Openafs | 1.5.26 | 1.5.26 |
Openafs | Openafs | 1.5.27 | 1.5.27 |
Openafs | Openafs | 1.5.30 | 1.5.30 |
Openafs | Openafs | 1.5.31 | 1.5.31 |
Openafs | Openafs | 1.5.32 | 1.5.32 |
Openafs | Openafs | 1.5.33 | 1.5.33 |
Openafs | Openafs | 1.5.34 | 1.5.34 |
Openafs | Openafs | 1.5.35 | 1.5.35 |
Openafs | Openafs | 1.5.36 | 1.5.36 |
Openafs | Openafs | 1.5.38 | 1.5.38 |
Openafs | Openafs | 1.5.39 | 1.5.39 |
Openafs | Openafs | 1.5.50 | 1.5.50 |
Openafs | Openafs | 1.5.52 | 1.5.52 |
Openafs | Openafs | 1.5.53 | 1.5.53 |
Openafs | Openafs | 1.5.54 | 1.5.54 |
Openafs | Openafs | 1.5.55 | 1.5.55 |
Openafs | Openafs | 1.5.56 | 1.5.56 |
Openafs | Openafs | 1.5.57 | 1.5.57 |
Openafs | Openafs | 1.5.58 | 1.5.58 |