CVE-2011-2199

NameCVE-2011-2199
DescriptionBuffer overflow in tftp-hpa before 5.1 allows remote attackers to cause a denial of service and possibly execute arbitrary code via the utimeout option.
SourceCVE (at NVD; CERT, LWN, oss-sec, fulldisc, Red Hat, Ubuntu, Gentoo, SUSE bugzilla/CVE, GitHub advisories/code/issues, web search, more)

Vulnerable and fixed packages

The table below lists information on source packages.

Source PackageReleaseVersionStatus
tftp-hpa (PTS)jessie5.2+20140608-3fixed
buster, stretch5.2+20150808-1fixed
bullseye5.2+20150808-1.2fixed
bookworm5.2+20150808-1.4fixed
sid, trixie5.2+20240610-2fixed

The information below is based on the following data on fixed versions.

PackageTypeReleaseFixed VersionUrgencyOriginDebian Bugs
tftp-hpasource(unstable)5.1-1low

Notes

[squeeze] - tftp-hpa <no-dsa> (Minor issue)
http://git.kernel.org/?p=network/tftp/tftp-hpa.git;a=commitdiff;h=f3035c45bc50bb5cac87ca01e7ef6a12485184f8

Search for package or bug name: Reporting problems