Hi Jose,
On 29.08.25 18:28, Jose M Calhariz wrote:
Just found out, the latest security update for Debian v11, breaks command bos.
Any attempt to run "bos status <server>" returns:
bos: running unauthenticated
bos: failed to contact host's bosserver (RPC interface mismatch (-451)).
can you please tell me more about your cell? What version is your
bosserver running? Are there clients/server in the cell, that are still
vulnerable to CVE-2024-10397?
I assume that this newly added check:
tconfig.cacheConfig_len != sizeof(cm_initparams_v1)/sizeof(afs_uint32)
in src/libadmin/adminutil/afs_utilAdmin:util_CMClientConfig() is failing.
Probably your server and client disagree on the size of some structs.
Thorsten
