Candidate: CVE-2018-16949
PublicDate: 2018-09-12 01:29:00 UTC
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16949
 http://openafs.org/pages/security/OPENAFS-SA-2018-003.txt
Description:
 An issue was discovered in OpenAFS before 1.6.23 and 1.8.x before 1.8.2.
 Several data types used as RPC input variables were implemented as
 unbounded array types, limited only by the inherent 32-bit length field to
 4 GB. An unauthenticated attacker could send, or claim to send, large input
 values and consume server resources waiting for those inputs, denying
 service to other valid connections.
Ubuntu-Description:
Notes:
Bugs:
 http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=908616
Priority: medium
Discovered-by:
Assigned-to:
CVSS:
 nvd: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H [7.5 HIGH]


Patches_openafs:
upstream_openafs: released (1.8.2-1)
precise/esm_openafs: DNE
trusty_openafs: ignored (reached end-of-life)
trusty/esm_openafs: DNE (trusty was needs-triage)
xenial_openafs: ignored (end of standard support, was needed)
bionic_openafs: needed
cosmic_openafs: ignored (reached end-of-life)
disco_openafs: not-affected (1.8.2-1ubuntu0.1)
eoan_openafs: not-affected (1.8.4~pre1-1ubuntu2)
focal_openafs: not-affected (1.8.4~pre1-1ubuntu2)
groovy_openafs: not-affected (1.8.4~pre1-1ubuntu2)
hirsute_openafs: not-affected (1.8.4~pre1-1ubuntu2)
impish_openafs: not-affected (1.8.4~pre1-1ubuntu2)
jammy_openafs: not-affected (1.8.4~pre1-1ubuntu2)
devel_openafs: not-affected (1.8.4~pre1-1ubuntu2)