Security update for netatalk (important)

2018-12-28T21:15:07
ID OPENSUSE-SU-2018:4287-1
Type suse
Reporter Suse
Modified 2018-12-28T21:15:07

Description

This update for netatalk fixes the following issues:

Security issue fixed:

  • CVE-2018-1160 Fixed a missing bounds check in the handling of the DSI OPEN SESSION request, which allowed an unauthenticated to overwrite memory with data of their choice leading for arbitrary code execution with root privileges. (bsc#1119540)