From: Anders Kaseorg <andersk@mit.edu>
Date: Wed, 12 Sep 2018 01:14:48 +0000 (-0700)
Subject: Changelog entry for 1.8.2
X-Git-Tag: debian/1.8.2-1~3
X-Git-Url: https://git.michaelhowe.org/gitweb/?a=commitdiff_plain;h=b2df6a37fc16baf7ea4659c9c0cc8cb68650885e;p=packages%2Fo%2Fopenafs.git

Changelog entry for 1.8.2

Signed-off-by: Anders Kaseorg <andersk@mit.edu>
---

diff --git a/debian/changelog b/debian/changelog
index 93d092c54..ad72a640a 100644
--- a/debian/changelog
+++ b/debian/changelog
@@ -1,3 +1,17 @@
+openafs (1.8.2-1) UNRELEASED; urgency=high
+
+  * New upstream release 1.8.1.1:
+    - Support Linux 4.18.
+  * New upstream security release 1.8.2 (Closes: #908616):
+    - Fix OPENAFS-SA-2018-001: unauthenticated volume operations via butc
+      (CVE-2018-16947).
+    - Fix OPENAFS-SA-2018-002: information leakage in RPC output variables
+      (CVE-2018-16948).
+    - Fix OPENAFS-SA-2018-003: denial of service due to excess resource
+      consumption (CVE-2018-16949).
+
+ -- Anders Kaseorg <andersk@mit.edu>  Tue, 11 Sep 2018 18:08:42 -0700
+
 openafs (1.8.1-1) unstable; urgency=medium
 
   * New upstream release.  In addition to changes in pre2: