Flesh out changelog for upstream 1.6.7 release

author Russ Allbery <rra@debian.org>

Wed, 9 Apr 2014 17:08:14 +0000 (10:08 -0700)

committer Russ Allbery <rra@debian.org>

Wed, 9 Apr 2014 17:08:14 +0000 (10:08 -0700)
author Russ Allbery <rra@debian.org>
Wed, 9 Apr 2014 17:08:14 +0000 (10:08 -0700)
committer Russ Allbery <rra@debian.org>
Wed, 9 Apr 2014 17:08:14 +0000 (10:08 -0700)
diff --git a/debian/changelog b/debian/changelog

index b5627346189b3001ee41b5d8805a05df6e849e70..8a23b1bbb01ff04290f41e008d25b05360266f01 100644 (file)
--- a/debian/changelog
+++ b/debian/changelog
@@ -1,6 +1,10 @@
  openafs (1.6.7-1) UNRELEASED; urgency=high
  
    * New upstream security release.
+    - OPENAFS-SA-2014-001: Fix potential buffer overflow in the
+      fileserver.  (CVE-2014-0159)
+    - Fix a potential DoS attack against Rx servers by avoiding suspending
+      the listener thread when delaying connection abort messages.
  
   -- Russ Allbery <rra@debian.org>  Wed, 09 Apr 2014 10:02:33 -0700
author	Russ Allbery <rra@debian.org>
	Wed, 9 Apr 2014 17:08:14 +0000 (10:08 -0700)
committer	Russ Allbery <rra@debian.org>
	Wed, 9 Apr 2014 17:08:14 +0000 (10:08 -0700)