First published: Sun Jun 16 2024(Updated: )
Netatalk before 3.2.1 has an off-by-one error and resultant heap-based buffer overflow because of setting ibuf[PASSWDLEN] to '\0' in FPLoginExt in login in etc/uams/uams_pam.c. 2.4.1 and 3.1.19 are also fixed versions.
Credit: cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
Netatalk Netatalk | >=2.0.0<2.4.1 | |
Netatalk Netatalk | >=3.0.0<3.1.19 | |
Netatalk Netatalk | =3.2.0 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.