CVE-2024-10397

>= 1.0 and < 1.6.25

A malicious server can crash the OpenAFS cache manager and other client utilities, and possibly execute arbitrary code.

7.8HIGH

CVE-2024-10396

>= 1.0 and < 1.6.25

An authenticated user can provide a malformed ACL to the fileserver's StoreACL RPC, causing the fileserver to crash, possibly expo

6.5MEDIUM

CVE-2024-10394

>= 1.0 and < 1.6.25

A local user can bypass the OpenAFS PAG (Process Authentication Group) throttling mechanism in Unix clients, allowing the user to

7.8HIGH

CVE-2019-18603

< 1.6.24

OpenAFS before 1.6.24 and 1.8.x before 1.8.5 is prone to information leakage upon certain error conditions because uninitialized R

5.9MEDIUM

CVE-2019-18602

< 1.6.24

OpenAFS before 1.6.24 and 1.8.x before 1.8.5 is prone to an information disclosure vulnerability because uninitialized scalars are

7.5HIGH

CVE-2019-18601

< 1.6.24

OpenAFS before 1.6.24 and 1.8.x before 1.8.5 is prone to denial of service from unserialized data access because remote attackers

7.5HIGH

CVE-2018-16949

< 1.6.23

An issue was discovered in OpenAFS before 1.6.23 and 1.8.x before 1.8.2. Several data types used as RPC input variables were imple

7.5HIGH

CVE-2018-16948

< 1.6.23

An issue was discovered in OpenAFS before 1.6.23 and 1.8.x before 1.8.2. Several RPC server routines did not fully initialize thei

7.5HIGH

CVE-2018-16947

< 1.6.23

An issue was discovered in OpenAFS before 1.6.23 and 1.8.x before 1.8.2. The backup tape controller (butc) process accepts incomin

9.8CRITICAL

CVE-2017-17432

>= 1.0 and < 1.6.22

OpenAFS 1.x before 1.6.22 does not properly validate Rx ack packets, which allows remote attackers to cause a denial of service (s

7.5HIGH

CVE-2016-9772

<= 1.6.19

OpenAFS 1.6.19 and earlier allows remote attackers to obtain sensitive directory information via vectors involving the (1) client

5.3MEDIUM

CVE-2016-4536

<= 1.6.16

The client in OpenAFS before 1.6.17 does not properly initialize the (1) AFSStoreStatus, (2) AFSStoreVolumeStatus, (3) VldbListByA

5.3MEDIUM

CVE-2016-2860

<= 1.6.16

The newEntry function in ptserver/ptprocs.c in OpenAFS before 1.6.17 allows remote authenticated users from foreign Kerberos realm

6.5MEDIUM

CVE-2015-8312

<= 1.6.15

Off-by-one error in afs_pioctl.c in OpenAFS before 1.6.16 might allow local users to cause a denial of service (memory overwrite a

7.8HIGH

CVE-2015-7763

all versions

rx/rx.c in OpenAFS 1.5.75 through 1.5.78, 1.6.x before 1.6.15, and 1.7.x before 1.7.33 does not properly initialize padding at the

CVE-2015-7762

<= 1.6.14.1

rx/rx.c in OpenAFS before 1.6.15 and 1.7.x before 1.7.33 does not properly initialize the padding of a data structure when constru

CVE-2015-6587

<= 1.6.12

The vlserver in OpenAFS before 1.6.13 allows remote authenticated users to cause a denial of service (out-of-bounds read and crash

CVE-2015-3286

<= 1.6.12

Buffer overflow in the Solaris kernel extension in OpenAFS before 1.6.13 allows local users to cause a denial of service (panic or

CVE-2015-3285

<= 1.6.12

The pioctl for the OSD FS command in OpenAFS before 1.6.13 uses the wrong pointer when writing the results of the RPC, which allow

CVE-2015-3284

<= 1.6.12

pioctls in OpenAFS 1.6.x before 1.6.13 allows local users to read kernel memory via crafted commands.

CVE-2015-3283

<= 1.6.12

OpenAFS before 1.6.13 allows remote attackers to spoof bos commands via unspecified vectors.

CVE-2015-3282

<= 1.6.12

vos in OpenAFS before 1.6.13, when updating VLDB entries, allows remote attackers to obtain stack data by sniffing the network.

CVE-2014-4044

all versions

OpenAFS 1.6.8 does not properly clear the fields in the host structure, which allows remote attackers to cause a denial of service

CVE-2014-2852

<= 1.6.6

OpenAFS before 1.6.7 delays the listen thread when an RXS_CheckResponse fails, which allows remote attackers to cause a denial of

CVE-2014-0159

all versions

Buffer overflow in the GetStatistics64 remote procedure call (RPC) in OpenAFS 1.4.8 before 1.6.7 allows remote attackers to cause

CVE-2013-4135

all versions

The vos command in OpenAFS 1.6.x before 1.6.5, when using the -encrypt option, only enables integrity protection and sends data in

CVE-2013-4134

<= 1.4.14

OpenAFS before 1.4.15, 1.6.x before 1.6.5, and 1.7.x before 1.7.26 uses weak encryption (DES) for Kerberos keys, which makes it ea

CVE-2013-1795

<= 1.6.1

Integer overflow in ptserver in OpenAFS before 1.6.2 allows remote attackers to cause a denial of service (crash) via a large list

CVE-2013-1794

<= 1.6.1

Buffer overflow in certain client utilities in OpenAFS before 1.6.2 allows remote authenticated users to cause a denial of service

CVE-2011-0431

all versions

The afs_linux_lock function in afs/LINUX/osi_vnodeops.c in the kernel module in OpenAFS 1.4.14, 1.4.12, 1.4.7, and possibly other

CVE-2011-0430

all versions

Double free vulnerability in the Rx server process in OpenAFS 1.4.14, 1.4.12, 1.4.7, and possibly other versions allows remote att

CVE-2009-1251

all versions

Heap-based buffer overflow in the cache manager in the client in OpenAFS 1.0 through 1.4.8 and 1.5.0 through 1.5.58 on Unix platfo

CVE-2009-1250

all versions

The cache manager in the client in OpenAFS 1.0 through 1.4.8 and 1.5.0 through 1.5.58, and IBM AFS 3.6 before Patch 19, on Linux a

CVE-2007-6599

>= 1.3.50 and <= 1.4.5

Race condition in fileserver in OpenAFS 1.3.50 through 1.4.5 and 1.5.0 through 1.5.27 allows remote attackers to cause a denial of

CVE-2007-1507

all versions

The default configuration in OpenAFS 1.4.x before 1.4.4 and 1.5.x before 1.5.17 supports setuid programs within the local cell, wh

CVE-2003-0028

all versions

Integer overflow in the xdrmem_getbytes() function, and possibly other functions, of XDR (external data representation) libraries