Linux Distros Unpatched Vulnerability : CVE-2022-43634

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - This vulnerability allows remote attackers to execute arbitrary code on affected installations of Netatalk. Authentication is not required to exploit this...

QNAP QuTS hero Multiple Vulnerabilities (QSA-23-22, QSA-23-54, QSA-23-64)

QNAP QuTS hero is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/o:qnap:qutshero"; ifdescriptio...

QNAP QTS / QuTS hero Vulnerability in Netatalk (QSA-23-22)

The version of QNAP QTS / QuTS hero installed on the remote host is affected by a vulnerability as referenced in the QSA-23-22 advisory. - This vulnerability allows remote attackers to execute arbitrary code on affected installations of Netatalk. Authentication is not required to exploit this...

[SECURITY] [DSA 5503-1] netatalk security update

------------------------------------------------------------------------- Debian Security Advisory DSA-5503-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff September 20, 2023 https://www.debian.org/security/faq -...

USN-6146-1: Netatalk vulnerabilities

It was discovered that Netatalk did not properly validate the length of user-supplied data in the DSI structures. A remote attacker could possibly use this issue to execute arbitrary code with the privileges of the user invoking the programs. This issue only affected Ubuntu 20.04 LTS and Ubuntu...

[slackware-security] netatalk

New netatalk packages are available for Slackware 14.1, 14.2, 15.0, and -current to fix security issues. Here are the details from the Slackware 15.0 ChangeLog: patches/packages/netatalk-3.1.15-i586-1slack15.0.txz: Upgraded. This update fixes security issues, including a critical vulnerability th...

Fedora: Security Advisory for netatalk (FEDORA-2023-599faf1b1c)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Fedora 38 : netatalk (2023-599faf1b1c)

The remote Fedora 38 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2023-599faf1b1c advisory. Security fix for CVE-2022-45188 Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus h...

Fedora 36 : netatalk (2023-e714897e70)

The remote Fedora 36 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2023-e714897e70 advisory. Security fix for CVE-2022-45188 Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus h...

Netatalk <= 3.1.14 RCE Vulnerability

Netatalk is prone to a remote code execution RCE vulnerability. SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:netatalk:netatalk...

CVE-2022-43634

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Netatalk. Authentication is not required to exploit this vulnerability. The specific flaw exists within the dsiwriteinit function. The issue results from the lack of proper validation of the length o...

CVE-2022-43634

Netatalk CVE-2022-43634 is a remote code execution flaw in the dsi_writeinit function caused by improper validation of user-supplied data length, leading to root privileges via a heap-based buffer overflow. Affected: Netatalk implementations on various Linux distributions and Netatalk-based appli...

SUSE CVE-2022-43634

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Netatalk. Authentication is not required to exploit this vulnerability. The specific flaw exists within the dsiwriteinit function. The issue results from the lack of proper validation of the length o...

SUSE-SU-2023:0316-1 Security update for netatalk

This update for netatalk fixes the following issues: - CVE-2022-43634: Fixed heap-based Buffer Overflow in dsiwriteinit bsc1207974...