11 matches found
Debian DSA-5503-1 : netatalk - security update
The remote Debian 11 host has a package installed that is affected by multiple vulnerabilities as referenced in the dsa-5503 advisory. Multiple security issues were discovered in Netatalk, an implementation of the Apple Filing Protocol AFP for offering file service mainly to macOS clients, which...
[SECURITY] [DSA 5503-1] netatalk security update
------------------------------------------------------------------------- Debian Security Advisory DSA-5503-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff September 20, 2023 https://www.debian.org/security/faq -...
USN-6146-1: Netatalk vulnerabilities
It was discovered that Netatalk did not properly validate the length of user-supplied data in the DSI structures. A remote attacker could possibly use this issue to execute arbitrary code with the privileges of the user invoking the programs. This issue only affected Ubuntu 20.04 LTS and Ubuntu...
CVE-2022-23124
creationtimestamp| type| source ---|---|--- 2023-03-28 22:39:46+00:00| seen| https://t.me/cibsecurity/60910...
CVE-2022-23124
Netatalk is affected by CVE-2022-23124 (out-of-bounds read) and related CVEs, enabling unauthenticated information disclosure and potential code execution in some contexts. Public advisories reference multiple Netatalk CVEs (including CVE-2022-23124 and others) with impact descriptions such as in...
CVE-2022-23124
This vulnerability allows remote attackers to disclose sensitive information on affected installations of Netatalk. Authentication is not required to exploit this vulnerability. The specific flaw exists within the getfinderinfo method. The issue results from the lack of proper validation of...
Updated netatalk packages fix security vulnerability
Heap overflow leading to arbitrary code execution. CVE-2021-31439 Buffer overflow leading to remote code execution CVE-2022-0194 Improper length validation leading to remote code execution CVE-2022-23121 Buffer overflow leading to remote code execution CVE-2022-23122 Out-of-bounds read leading to...
Netatalk contains multiple error and memory management vulnerabilities
Overview There are six new vulnerabilities in the latest release of Netatalk 3.1.12 that could allow for Remote Code Execution as well as Out-of-bounds Read. Description Below are the new CVEs. Per ZDI: CVE-2022-0194 This vulnerability allows remote attackers to execute arbitrary code on affected...
Synology DiskStation Manager (DSM) 6.2.x < 6.2.4-25556-6, 7.0.x < 7.0.1-42218-4, 7.1.x < 7.1-42661-1 Multiple Vulnerabilities (Synology-SA-22:06) - Unreliable Remote Version Check
Synology DiskStation Manager DSM is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...
Synology DiskStation Manager (DSM) 6.2.x < 6.2.4-25556-6, 7.0.x < 7.0.1-42218-4, 7.1.x < 7.1-42661-1 Multiple Vulnerabilities (Synology-SA-22:06) - Remote Known Vulnerable Versions Check
Synology DiskStation Manager DSM is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...
QNAP QuTS hero Multiple Vulnerabilities (QSA-22-12)
QNAP QuTS hero is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/o:qnap:qutshero"; ifdescriptio...