Openafs Openafs
36 CVEs affecting Openafs Openafs. Latest disclosed: 2024-11-14. Critical: 1, High: 8.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2018-16947 | Critical | 9.8 | 2018-09-12 | An issue was discovered in OpenAFS before 1.6.23 and 1.8.x before 1.8.2. The backup tape controller (butc) process accepts incoming RPCs but does not require (… |
CVE-2024-10397 | High | 7.8 | 2024-11-14 | A malicious server can crash the OpenAFS cache manager and other client utilities, and possibly execute arbitrary code. |
CVE-2024-10394 | High | 7.8 | 2024-11-14 | A local user can bypass the OpenAFS PAG (Process Authentication Group) throttling mechanism in Unix clients, allowing the user to create a PAG using an existin… |
CVE-2015-8312 | High | 7.8 | 2016-05-13 | Off-by-one error in afs_pioctl.c in OpenAFS before 1.6.16 might allow local users to cause a denial of service (memory overwrite and system crash) via a pioctl… |
CVE-2019-18602 | High | 7.5 | 2019-10-29 | OpenAFS before 1.6.24 and 1.8.x before 1.8.5 is prone to an information disclosure vulnerability because uninitialized scalars are sent over the network to a p… |
CVE-2019-18601 | High | 7.5 | 2019-10-29 | OpenAFS before 1.6.24 and 1.8.x before 1.8.5 is prone to denial of service from unserialized data access because remote attackers can make a series of VOTE_Deb… |
CVE-2018-16949 | High | 7.5 | 2018-09-12 | An issue was discovered in OpenAFS before 1.6.23 and 1.8.x before 1.8.2. Several data types used as RPC input variables were implemented as unbounded array typ… |
CVE-2018-16948 | High | 7.5 | 2018-09-12 | An issue was discovered in OpenAFS before 1.6.23 and 1.8.x before 1.8.2. Several RPC server routines did not fully initialize their output variables before ret… |
CVE-2017-17432 | High | 7.5 | 2017-12-06 | OpenAFS 1.x before 1.6.22 does not properly validate Rx ack packets, which allows remote attackers to cause a denial of service (system crash or application cr… |
CVE-2024-10396 | Medium | 6.5 | 2024-11-14 | An authenticated user can provide a malformed ACL to the fileserver's StoreACL RPC, causing the fileserver to crash, possibly expose uninitialized memory, and… |
CVE-2016-2860 | Medium | 6.5 | 2016-05-13 | The newEntry function in ptserver/ptprocs.c in OpenAFS before 1.6.17 allows remote authenticated users from foreign Kerberos realms to bypass intended access r… |
CVE-2019-18603 | Medium | 5.9 | 2019-10-29 | OpenAFS before 1.6.24 and 1.8.x before 1.8.5 is prone to information leakage upon certain error conditions because uninitialized RPC output variables are sent… |
CVE-2016-9772 | Medium | 5.3 | 2017-02-06 | OpenAFS 1.6.19 and earlier allows remote attackers to obtain sensitive directory information via vectors involving the (1) client cache partition, (2) fileserv… |
CVE-2016-4536 | Medium | 5.3 | 2016-05-13 | The client in OpenAFS before 1.6.17 does not properly initialize the (1) AFSStoreStatus, (2) AFSStoreVolumeStatus, (3) VldbListByAttributes, and (4) ListAddrBy… |
CVE-2015-7763 | | 2015-11-06 | rx/rx.c in OpenAFS 1.5.75 through 1.5.78, 1.6.x before 1.6.15, and 1.7.x before 1.7.33 does not properly initialize padding at the end of an Rx acknowledgement… | |
CVE-2015-7762 | | 2015-11-06 | rx/rx.c in OpenAFS before 1.6.15 and 1.7.x before 1.7.33 does not properly initialize the padding of a data structure when constructing an Rx acknowledgement (… | |
CVE-2015-6587 | | 2015-09-02 | The vlserver in OpenAFS before 1.6.13 allows remote authenticated users to cause a denial of service (out-of-bounds read and crash) via a crafted regular expre… | |
CVE-2015-3286 | | 2015-08-12 | Buffer overflow in the Solaris kernel extension in OpenAFS before 1.6.13 allows local users to cause a denial of service (panic or deadlock) or possibly have o… | |
CVE-2015-3285 | | 2015-08-12 | The pioctl for the OSD FS command in OpenAFS before 1.6.13 uses the wrong pointer when writing the results of the RPC, which allows local users to cause a deni… | |
CVE-2015-3284 | | 2015-08-12 | pioctls in OpenAFS 1.6.x before 1.6.13 allows local users to read kernel memory via crafted commands. |