Information on source package netatalk

Available versions

ReleaseVersion
stretch2.2.5-2+deb9u1
buster3.1.12~ds-3+deb10u5
bullseye3.1.12~ds-8+deb11u1
trixie4.0.3~ds-2
sid4.0.3~ds-2

Open issues

BugstretchbusterbullseyetrixiesidDescription
CVE-2024-38441vulnerablevulnerablevulnerablefixedfixedNetatalk before 3.2.1 has an off-by-one error and resultant heap-based ...
CVE-2024-38440vulnerablevulnerablevulnerablefixedfixedNetatalk before 3.2.1 has an off-by-one error, and resultant heap-base ...
CVE-2024-38439vulnerablevulnerablevulnerablefixedfixedNetatalk before 3.2.1 has an off-by-one error and resultant heap-based ...
CVE-2023-42464vulnerablefixedfixedfixedfixedA Type Confusion vulnerability was found in the Spotlight RPC function ...
CVE-2022-45188vulnerablefixedfixedfixedfixedNetatalk through 3.1.13 has an afp_getappl heap-based buffer overflow ...
CVE-2022-43634vulnerablefixedfixedfixedfixedThis vulnerability allows remote attackers to execute arbitrary code o ...
CVE-2022-23125vulnerablefixedfixedfixedfixedThis vulnerability allows remote attackers to execute arbitrary code o ...
CVE-2022-23124vulnerablefixedfixedfixedfixedThis vulnerability allows remote attackers to disclose sensitive infor ...
CVE-2022-23123vulnerablefixedfixedfixedfixedThis vulnerability allows remote attackers to disclose sensitive infor ...
CVE-2022-23122vulnerablefixedfixedfixedfixedThis vulnerability allows remote attackers to execute arbitrary code o ...
CVE-2022-23121vulnerablefixedfixedfixedfixedThis vulnerability allows remote attackers to execute arbitrary code o ...
CVE-2022-22995vulnerablefixedvulnerable (no DSA)fixedfixedThe combination of primitives offered by SMB and AFP in their default ...
CVE-2022-0194vulnerablefixedfixedfixedfixedThis vulnerability allows remote attackers to execute arbitrary code o ...
CVE-2021-31439vulnerablefixedfixedfixedfixedThis vulnerability allows network-adjacent attackers to execute arbitr ...

Resolved issues

BugDescription
CVE-2018-1160Netatalk before 3.1.12 is vulnerable to an out of bounds write in dsi_ ...
CVE-2008-5718The papd daemon in Netatalk before 2.0.4-beta2, when using certain var ...
CVE-2004-0974The netatalk package in Trustix Secure Linux 1.5 through 2.1, and poss ...

Security announcements

DSA / DLADescription
DLA-3706-1netatalk - security update
DLA-3584-1netatalk - security update
DSA-5503-1netatalk - security update
DLA-3426-3netatalk - regression update
DLA-3426-2netatalk - regression update
DLA-3426-1netatalk - security update
DSA-4356-1netatalk - security update
DSA-1705-1netatalk - arbitrary code execution
Search for package or bug name: Reporting problems