On Tue, 7 Apr 2009, Stephan Wiesand wrote: > http://www-zeuthen.desy.de/~wiesand/SL5/openafs.SLx-1.4.7-68.2.src.rpm > > I could not yet test the resulting RPMs yet These are running on a significant number of systems here now (SL4/5, 32/64, UP/SMP, xen host/VM,..) and are doing fine. These are the binaries built here so far, but it would be the first time that there's a problem with the ones built at FNAL (which we generally use) but not with my builds. > The patches do not apply to the 1.2.13 source (for SL3). It seems quite > feasible to apply the required changes (I wouldn't even call it > "backporting"), An SRPM with the same changes for SL3 is here: http://www-zeuthen.desy.de/~wiesand/SL/openafs-1.2.13-15.18.SL.src.rpm When comparing the resulting patches to the ones against 1.4 from openafs.org, I'm fairly confident that they will do their job and no harm with 1.2. I have the binaries running on three SL3 systems (i686, x86_64, ia32e, all SMP), and they seem to work. If anyone feels like checking that what I've done makes sense, that would be much appreciated. If anyone came up with a way to actually prove that the security holes are no longer present in the patched builds, that would of course be even better. Cheers, Stephan -- Stephan Wiesand DESY - DV - Platanenallee 6 15738 Zeuthen, Germany