Astra Linux - уязвимость в atftp

In tftpdfile.c in atftp up to 0.7.4, there is a buffer overflow issue due to improper handling of buffer-size parameters, which does not correctly account for combinations of data, OACK, and other options...

Astra Linux - уязвимость в atftp

In AtFTP, before version 0.7.5, the options.c file contained code that read past the end of an array. As a result, server-side /etc/group data was disclosed to a remote client...

CVE-2021-41054

tftpdfile.c in atftp through 0.7.4 has a buffer overflow because buffer-size handling does not properly consider the combination of data, OACK, and other options...

EUVD-2020-27251

Malware in sbrugna...

EUVD-2019-3044

Malware in sbrugna...

EUVD-2019-3043

Malware in sbrugna...

EUVD-2021-28205

Malicious code in bioql PyPI...

EUVD-2021-33347

Malicious code in bioql PyPI...

CVE-2021-46671

options.c in atftp before 0.7.5 reads past the end of an array, and consequently discloses server-side /etc/group data to a remote client...

CVE-2020-6097

An exploitable denial of service vulnerability exists in the atftpd daemon functionality of atftp 0.7.git20120829-3.1+b1. A specially crafted sequence of RRQ-Multicast requests trigger an assert call resulting in denial-of-service. An attacker can send a sequence of malicious packets to trigger...

Photon OS 4.0: Atftp PHSA-2021-4.0-0109

An update of the atftp package has been released. %NASLMINLEVEL 80900 C Tenable, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2021-4.0-0109. The text itself is copyright C VMware, Inc. include'compat.inc'; if description...

OPENSUSE-SU-2024:10636-1 atftp-0.7.5-1.1 on GA media

These are all security issues fixed in the atftp-0.7.5-1.1 package on the GA media of openSUSE Tumbleweed...

Ubuntu: Security Advisory (USN-6375-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

USN-6375-1 atftp vulnerability

Florian Fainelli discovered that atftp did not properly manage requests made to a non-existent file, which could lead to a crash. A remote attacker could possibly use this issue to cause a denial of service...

USN-6375-1: atftp vulnerability

Florian Fainelli discovered that atftp did not properly manage requests made to a non-existent file, which could lead to a crash. A remote attacker could possibly use this issue to cause a denial of service...

Ubuntu 22.04 LTS / 23.04 : atftp vulnerability (USN-6375-1)

The remote Ubuntu 22.04 LTS / 23.04 host has packages installed that are affected by a vulnerability as referenced in the USN-6375-1 advisory. Florian Fainelli discovered that atftp did not properly manage requests made to a non-existent file, which could lead to a crash. A remote attacker could...

PT-2023-36319 · Atftp · Atftp

Name of the Vulnerable Software and Affected Versions: atftp affected versions not specified Description: The issue arises from atftp's improper management of requests made to non-existent files, potentially leading to a crash. A remote attacker could exploit this to cause a denial of service...

Ubuntu: Security Advisory (USN-6334-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

USN-6334-1 atftp vulnerabilities

Peter Wang discovered that atftp did not properly manage certain inputs. A remote attacker could send a specially crafted tftp request to the server to cause a crash. CVE-2020-6097 Andreas B. Mundt discovered that atftp did not properly manage certain inputs. A remote attacker could send a...

USN-6334-1: atftp vulnerabilities

Peter Wang discovered that atftp did not properly manage certain inputs. A remote attacker could send a specially crafted tftp request to the server to cause a crash. CVE-2020-6097 Andreas B. Mundt discovered that atftp did not properly manage certain inputs. A remote attacker could send a...