VDB

GCVE-110-MAGEIA-2015-424

GCVE-110-MAGEIA-2015-424
Advisory Published
Vulnetix · Advisory published November 2, 2015
Updated openafs packages fix security vulnerabilities: When constructing an Rx acknowledgment (ACK) packet, Andrew-derived Rx implementations do not initialize three octets of data that are padding in the C language structure and were inadvertently included in the wire protocol (CVE-2015-7762). Additionally, OpenAFS Rx before version 1.6.14 includes a variable-length padding at the end of the ACK packet, in an attempt to detect the path MTU, but only four octets of the additional padding are initialized (CVE-2015-7763).

Affected Products

VendorProductVersionsPlatforms
Mageiaopenafs0 (affected), 1.6.15-1.mga5 (unaffected)

Browse GCVE Records

72,096 records in the GCVE database · Updated July 14, 2026

No matching records found.

Explore Further

Investigate this vulnerability in the interactive console or download the raw GCVE record.

$ Console Community · 100/wk Open console ›