Unrated severityNVD Advisory· Published Jan 4, 2008· Updated Apr 23, 2026
CVE-2007-6599
CVE-2007-6599
Description
Race condition in fileserver in OpenAFS 1.3.50 through 1.4.5 and 1.5.0 through 1.5.27 allows remote attackers to cause a denial of service (daemon crash) by simultaneously acquiring and giving back file callbacks, which causes the handler for the GiveUpAllCallBacks RPC to perform linked-list operations without the host_glock lock.
Affected products
3cpe:2.3:o:debian:debian_linux:3.1:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:o:debian:debian_linux:3.1:*:*:*:*:*:*:*
- cpe:2.3:o:debian:debian_linux:4.0:*:*:*:*:*:*:*
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
12- lists.openafs.org/pipermail/openafs-announce/2007/000220.htmlnvdVendor Advisory
- secunia.com/advisories/28327nvdThird Party Advisory
- secunia.com/advisories/28401nvdThird Party Advisory
- secunia.com/advisories/28433nvdThird Party Advisory
- secunia.com/advisories/28636nvdThird Party Advisory
- security.gentoo.org/glsa/glsa-200801-04.xmlnvdThird Party Advisory
- www.debian.org/security/2008/dsa-1458nvdThird Party Advisory
- www.mandriva.com/security/advisoriesnvdThird Party Advisory
- www.novell.com/linux/security/advisories/suse_security_summary_report.htmlnvdThird Party Advisory
- www.openafs.org/security/OPENAFS-SA-2007-003.txtnvdVendor Advisory
- www.securityfocus.com/bid/27132nvdThird Party AdvisoryVDB Entry
- www.vupen.com/english/advisories/2008/0046nvdThird Party Advisory
News mentions
0No linked articles in our index yet.