From: Russ Allbery <rra@debian.org>
Date: Fri, 1 Mar 2013 22:40:54 +0000 (-0800)
Subject: Add CVEs to the changelog for 1.6.1-3
X-Git-Tag: debian/1.6.1-3~1
X-Git-Url: https://git.michaelhowe.org/gitweb/?a=commitdiff_plain;h=d52ca5f1b18794c58a65f93fed5072660b344f93;p=packages%2Fo%2Fopenafs.git

Add CVEs to the changelog for 1.6.1-3
---

diff --git a/debian/changelog b/debian/changelog
index eb81d0a8c..105c2d6f0 100644
--- a/debian/changelog
+++ b/debian/changelog
@@ -3,9 +3,9 @@ openafs (1.6.1-3) UNRELEASED; urgency=high
   * Apply upstream security patches:
     - OPENAFS-SA-2013-001: Fix fileserver buffer overflow when parsing
       client-supplied ACL entries and protect against client parsing of
-      bad ACL entries.
+      bad ACL entries.  (CVE-2013-1794)
     - OPENAFS-SA-2013-002: Fix ptserver buffer overflow via integer
-      overflow in the IdToName RPC.
+      overflow in the IdToName RPC.  (CVE-2013-1795)
 
  -- Russ Allbery <rra@debian.org>  Sun, 24 Feb 2013 15:01:49 -0800