Synopsis: Low: openafs security update Issue date: 21-Dec-2007 CVE Names: OpenAFS Security Advisory 2007-003 In pthread-aware fileservers, the "host_glock" pthread lock, accessed via the H_LOCK and H_UNLOCK macros, is used to provide safe access to host structures. This lock is required to be held when updating information pertaining to a host. The RPC handler for the GiveUpAllCallBacks RPC did not hold this lock while performing its work. SL 5.x SRPMS: openafs.SLx-1.4.6-58.src.rpm i386: openafs-1.4.6-58.SL5.i686.rpm openafs-authlibs-1.4.6-58.SL5.i686.rpm openafs-authlibs-devel-1.4.6-58.SL5.i686.rpm openafs-client-1.4.6-58.SL5.i686.rpm openafs-compat-1.4.6-58.SL5.i686.rpm openafs-debug-1.4.6-58.SL5.i686.rpm openafs-devel-1.4.6-58.SL5.i686.rpm openafs-kernel-source-1.4.6-58.SL5.i686.rpm openafs-kpasswd-1.4.6-58.SL5.i686.rpm openafs-krb5-1.4.6-58.SL5.i686.rpm openafs-server-1.4.6-58.SL5.i686.rpm kernel-module-openafs-2.6.18-53.1.4.el5-1.4.6-58.SL5.i686.rpm kernel-module-openafs-2.6.18-53.1.4.el5PAE-1.4.6-58.SL5.i686.rpm kernel-module-openafs-2.6.18-53.1.4.el5xen-1.4.6-58.SL5.i686.rpm kernel-module-openafs-2.6.18-8.1.10.el5-1.4.6-58.SL5.i686.rpm kernel-module-openafs-2.6.18-8.1.10.el5PAE-1.4.6-58.SL5.i686.rpm kernel-module-openafs-2.6.18-8.1.10.el5xen-1.4.6-58.SL5.i686.rpm kernel-module-openafs-2.6.18-8.1.14.el5-1.4.6-58.SL5.i686.rpm kernel-module-openafs-2.6.18-8.1.14.el5PAE-1.4.6-58.SL5.i686.rpm kernel-module-openafs-2.6.18-8.1.14.el5xen-1.4.6-58.SL5.i686.rpm kernel-module-openafs-2.6.18-8.1.15.el5-1.4.6-58.SL5.i686.rpm kernel-module-openafs-2.6.18-8.1.15.el5PAE-1.4.6-58.SL5.i686.rpm kernel-module-openafs-2.6.18-8.1.15.el5xen-1.4.6-58.SL5.i686.rpm kernel-module-openafs-2.6.18-8.1.3.el5-1.4.6-58.SL5.i686.rpm kernel-module-openafs-2.6.18-8.1.3.el5PAE-1.4.6-58.SL5.i686.rpm kernel-module-openafs-2.6.18-8.1.3.el5xen-1.4.6-58.SL5.i686.rpm kernel-module-openafs-2.6.18-8.1.4.el5-1.4.6-58.SL5.i686.rpm kernel-module-openafs-2.6.18-8.1.4.el5PAE-1.4.6-58.SL5.i686.rpm kernel-module-openafs-2.6.18-8.1.4.el5xen-1.4.6-58.SL5.i686.rpm kernel-module-openafs-2.6.18-8.1.6.el5-1.4.6-58.SL5.i686.rpm kernel-module-openafs-2.6.18-8.1.6.el5PAE-1.4.6-58.SL5.i686.rpm kernel-module-openafs-2.6.18-8.1.6.el5xen-1.4.6-58.SL5.i686.rpm kernel-module-openafs-2.6.18-8.1.8.el5-1.4.6-58.SL5.i686.rpm kernel-module-openafs-2.6.18-8.1.8.el5PAE-1.4.6-58.SL5.i686.rpm kernel-module-openafs-2.6.18-8.1.8.el5xen-1.4.6-58.SL5.i686.rpm x86_64: openafs-1.4.6-58.SL5.x86_64.rpm openafs-authlibs-1.4.6-58.SL5.x86_64.rpm openafs-authlibs-devel-1.4.6-58.SL5.x86_64.rpm openafs-client-1.4.6-58.SL5.x86_64.rpm openafs-compat-1.4.6-58.SL5.x86_64.rpm openafs-debug-1.4.6-58.SL5.x86_64.rpm openafs-devel-1.4.6-58.SL5.x86_64.rpm openafs-kernel-source-1.4.6-58.SL5.x86_64.rpm openafs-kpasswd-1.4.6-58.SL5.x86_64.rpm openafs-krb5-1.4.6-58.SL5.x86_64.rpm openafs-server-1.4.6-58.SL5.x86_64.rpm kernel-module-openafs-2.6.18-53.1.4.el5-1.4.6-58.SL5.x86_64.rpm kernel-module-openafs-2.6.18-53.1.4.el5xen-1.4.6-58.SL5.x86_64.rpm kernel-module-openafs-2.6.18-8.1.10.el5-1.4.6-58.SL5.x86_64.rpm kernel-module-openafs-2.6.18-8.1.10.el5xen-1.4.6-58.SL5.x86_64.rpm kernel-module-openafs-2.6.18-8.1.14.el5-1.4.6-58.SL5.x86_64.rpm kernel-module-openafs-2.6.18-8.1.14.el5xen-1.4.6-58.SL5.x86_64.rpm kernel-module-openafs-2.6.18-8.1.15.el5-1.4.6-58.SL5.x86_64.rpm kernel-module-openafs-2.6.18-8.1.15.el5xen-1.4.6-58.SL5.x86_64.rpm kernel-module-openafs-2.6.18-8.1.3.el5-1.4.6-58.SL5.x86_64.rpm kernel-module-openafs-2.6.18-8.1.3.el5xen-1.4.6-58.SL5.x86_64.rpm kernel-module-openafs-2.6.18-8.1.4.el5-1.4.6-58.SL5.x86_64.rpm kernel-module-openafs-2.6.18-8.1.4.el5xen-1.4.6-58.SL5.x86_64.rpm kernel-module-openafs-2.6.18-8.1.6.el5-1.4.6-58.SL5.x86_64.rpm kernel-module-openafs-2.6.18-8.1.6.el5xen-1.4.6-58.SL5.x86_64.rpm kernel-module-openafs-2.6.18-8.1.8.el5-1.4.6-58.SL5.x86_64.rpm kernel-module-openafs-2.6.18-8.1.8.el5xen-1.4.6-58.SL5.x86_64.rpm -Connie Sieh -Troy Dawson