Lucene search
MitreCVELIST:CVE-2023-42464HistorySep 20, 2023 - 12:00 a.m.
CVE-2023-42464
2023-09-2000:00:00
mitre
www.cve.org
spotlight rpc
key-value
type confusion
remote code execution
A Type Confusion vulnerability was found in the Spotlight RPC functions in afpd in Netatalk 3.1.x before 3.1.17. When parsing Spotlight RPC packets, one encoded data structure is a key-value style dictionary where the keys are character strings, and the values can be any of the supported types in the underlying protocol. Due to a lack of type checking in callers of the dalloc_value_for_key() function, which returns the object associated with a key, a malicious actor may be able to fully control the value of the pointer and theoretically achieve Remote Code Execution on the host. This issue is similar to CVE-2023-34967.
Related
nessus
nessus
Debian DLA-3584-1 : netatalk - LTS security update
2023-09-28 00:00:00
SUSE SLED12 / SLES12 Security Update : netatalk (SUSE-SU-2023:3779-1)
2023-09-27 00:00:00
Ubuntu 20.04 LTS / 22.04 LTS / 23.04 : Netatalk vulnerability (USN-6552-1)
2023-12-12 00:00:00
nvd
nvd
CVE-2023-42464
2023-09-20 15:15:11
CVE-2023-34967
2023-07-20 15:15:11
prion
prion
Type confusion
2023-09-20 15:15:00
Type confusion
2023-07-20 15:15:00
osv
osv
CVE-2023-42464
2023-09-20 15:15:11
netatalk - security update
2023-09-25 00:00:00
netatalk vulnerability
2023-12-12 15:22:20
debiancve
debiancve
CVE-2023-42464
2023-09-20 15:15:11
CVE-2023-34967
2023-07-20 15:15:11
ubuntucve
ubuntucve
CVE-2023-42464
2023-09-16 00:00:00
CVE-2023-34967
2023-07-19 00:00:00
alpinelinux
alpinelinux
CVE-2023-42464
2023-09-20 15:15:11
CVE-2023-34967
2023-07-20 15:15:11
cve
cve
CVE-2023-42464
2023-09-20 15:15:11
CVE-2023-34967
2023-07-20 15:15:11
openvas
openvas
Ubuntu: Security Advisory (USN-6552-1)
2023-12-13 00:00:00
Debian: Security Advisory (DLA-3584-1)
2023-09-29 00:00:00
Netatalk 3.1.x < 3.1.17 RCE Vulnerability
2023-09-22 00:00:00
debian
debian
[SECURITY] [DLA 3584-1] netatalk security update
2023-09-25 20:43:37
[SECURITY] [DSA 5477-1] samba security update
2023-08-14 18:38:41
[SECURITY] [DSA 5647-1] samba security update
2024-03-24 20:22:16
ubuntu
ubuntu
Netatalk vulnerability
2023-12-12 00:00:00
Samba vulnerabilities
2023-07-19 00:00:00
veracode
veracode
Remote Code Execution (RCE)
2023-10-02 18:48:25
Type Confusion
2023-08-06 10:02:19
slackware
slackware
[slackware-security] netatalk
2023-09-18 18:47:01
[slackware-security] samba
2023-08-04 20:53:11
redhatcve
redhatcve
CVE-2023-34967
2023-07-20 09:31:13
zdi
zdi
cvelist
cvelist
CVE-2023-34967 Samba: type confusion in mdssvc rpc service for spotlight
2023-07-20 14:57:45
samba
samba
Samba Spotlight mdssvc RPC Request Type
2023-07-19 00:00:00
redhat
redhat
(RHSA-2023:6667) Moderate: samba security, bug fix, and enhancement update
2023-11-07 06:11:31
(RHSA-2023:7139) Moderate: samba security, bug fix, and enhancement update
2023-11-14 08:46:27
(RHSA-2024:0580) Moderate: samba security update
2024-01-30 12:53:22
almalinux
almalinux
Moderate: samba security, bug fix, and enhancement update
2023-11-14 00:00:00
Moderate: samba security, bug fix, and enhancement update
2023-11-07 00:00:00
oraclelinux
oraclelinux
samba security, bug fix, and enhancement update
2023-11-18 00:00:00
samba security, bug fix, and enhancement update
2023-11-11 00:00:00
ibm
ibm
fedora
fedora
[SECURITY] Fedora 38 Update: samba-4.18.5-0.fc38
2023-07-22 01:23:14
[SECURITY] Fedora 37 Update: samba-4.17.10-0.fc37
2023-08-05 01:20:29
freebsd
freebsd
samba -- multiple vulnerabilities
2023-07-19 00:00:00
cloudfoundry
cloudfoundry
USN-6238-1: Samba vulnerabilities | Cloud Foundry
2023-08-10 00:00:00
mageia
mageia
Updated samba packages fix security vulnerability
2023-08-23 22:56:41
redos
redos
ROS-20230920-01
2023-09-20 00:00:00
gentoo
gentoo
Samba: Multiple Vulnerabilities
2024-02-19 00:00:00
hp
hp
HP ThinPro 8.0 SP 8 Security Updates
2024-03-01 00:00:00