Re: [SECURITY] [DSA 1458-1] New openafs packages fix denial of service vulnerability

On Thu, 2008-01-10 at 17:30 -0500, Noah Meyerhans wrote:
> On Thu, Jan 10, 2008 at 05:29:18PM -0500, Thomas Bushnell BSG wrote:
> > This is not sufficient advice for how to upgrade. Merely installing a
> > new version of openafs-modules-source will not build it. Some form of
> > m-a invocation as well will be necessary.
>
> Except that the security flaw is in the fileserver, which does not
> involve the kernel module at all and runs fine even without it
> installed.

Surely. But then the security update shouldn't mention unaffected packages!

Thomas

-- 
To UNSUBSCRIBE, email to debian-security-REQUEST@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmaster@lists.debian.org