The vulnerability of the strncpy function in Atftpd arises from the possibility of the operation exceeding the buffer’s memory limit. This allows attackers to compromise data integrity and confidentiality, or cause service failures.

The vulnerability of the strncpy function in the Atftpd package is related to the sending of a 3-byte error message by the package. Exploiting this vulnerability allows an attacker to compromise data integrity and confidentiality, or cause service failures...

DEBIAN-CVE-2019-11365

An issue was discovered in atftpd in atftp 0.7.1. A remote attacker may send a crafted packet triggering a stack-based buffer overflow due to an insecurely implemented strncpy call. The vulnerability is triggered by sending an error packet of 3 bytes or fewer. There are multiple instances of this...