Several vulnerabilities were discovered in OpenAFS, an implementation of the AFS distributed filesystem, which may result in theft of credentials in Unix client PAGs (CVE-2024-10394), fileserver crashes and information leak on StoreACL/FetchACL (CVE-2024-10396) or buffer overflows in XDR responses resulting in denial of service and potentially code execution (CVE-2024-10397).
https://security-tracker.debian.org/tracker/DSA-5842-1
Continue reading...
https://security-tracker.debian.org/tracker/DSA-5842-1
Continue reading...