Update 1.4.10 with security advisory names and CVEs

author Russ Allbery <rra@debian.org>

Mon, 6 Apr 2009 22:48:58 +0000 (15:48 -0700)

committer Russ Allbery <rra@debian.org>

Mon, 6 Apr 2009 22:48:58 +0000 (15:48 -0700)
author Russ Allbery <rra@debian.org>
Mon, 6 Apr 2009 22:48:58 +0000 (15:48 -0700)
committer Russ Allbery <rra@debian.org>
Mon, 6 Apr 2009 22:48:58 +0000 (15:48 -0700)
diff --git a/debian/changelog b/debian/changelog

index e988017ea2ef8e4d55ad0a462b9684ee417c286d..0dd5df65d27c0f4becdb330d14849211d06f1639 100644 (file)
--- a/debian/changelog
+++ b/debian/changelog
@@ -1,10 +1,11 @@
  openafs (1.4.10+dfsg1-1) UNRELEASED; urgency=low
  
    * New upstream release.
-    - Avoid a potential kernel memory overrun if more items than requested
-      are returned from an InlineBulk or BulkStatus message.
-    - Avoid converting negative errors into invalid kernel memory
-      pointers.
+    - OPENAFS-SA-2009-001: Avoid a potential kernel memory overrun if more
+      items than requested are returned from an InlineBulk or BulkStatus
+      message.  (CVE-2009-1251)
+    - OPENAFS-SA-2009-002: Avoid converting negative errors into invalid
+      kernel memory pointers.  (CVE-2009-1250)
      - Preliminary support for 2.6.30 kernels.
      - Dynamic vcache allocation support to deal with inotify vcache
        pinning.
author	Russ Allbery <rra@debian.org>
	Mon, 6 Apr 2009 22:48:58 +0000 (15:48 -0700)
committer	Russ Allbery <rra@debian.org>
	Mon, 6 Apr 2009 22:48:58 +0000 (15:48 -0700)