From 12cec23a43c3ede53cdd280fbcbb75aaa8096a84 Mon Sep 17 00:00:00 2001
From: Russ Allbery <rra@debian.org>
Date: Thu, 6 Jan 2011 20:13:17 -0800
Subject: [PATCH] Update changelog with another fix and more details

---
 debian/changelog | 10 ++++++++--
 1 file changed, 8 insertions(+), 2 deletions(-)

diff --git a/debian/changelog b/debian/changelog
index 684ffe5b6..7a99c34cf 100644
--- a/debian/changelog
+++ b/debian/changelog
@@ -1,7 +1,13 @@
 openafs (1.4.7.dfsg1-6+lenny3) stable-security; urgency=high
 
-  * Apply upstream security fix:
-    - [707a959c] update ticket5 from heimdal
+  * Apply upstream security fixes:
+    - [707a959c] update ticket5 from heimdal.  Avoids a double-free (from
+      upstream) which basically allows an arbitrary attack against any
+      krb5-aware Rx service by exploiting when the double-free occurs in
+      asn1 payloads which came from the wire.
+    - [beaf1606] LINUX: Use correct type of error in flock code.  This
+      avoids dereferencing a pointer that is not a pointer due to failing
+      to properly ERR_PTR a return value.
 
  -- Russ Allbery <rra@debian.org>  Wed, 29 Dec 2010 10:34:16 -0800
 
-- 
2.39.5