By the Year
In 2023 there have been 0 vulnerabilities in Netatalkproject Netatalk . Last year Netatalk had 1 security vulnerability published. Right now, Netatalk is on track to have less security vulnerabilities in 2023 than it did last year.
It may take a day or so for new Netatalk vulnerabilities to show up in the stats or in the list of recent security vulnerabilties. Additionally vulnerabilities may be tagged under a different product or component name.
Recent Netatalkproject Netatalk Security Vulnerabilities
Netatalk through 3.1.13 has an afp_getappl heap-based buffer overflow resulting in code execution via a crafted .appl file
7.8 - High
- November 12, 2022
Netatalk through 3.1.13 has an afp_getappl heap-based buffer overflow resulting in code execution via a crafted .appl file. This provides remote root access on some platforms such as FreeBSD (used for TrueNAS).
Netatalk before 3.1.12 is vulnerable to an out of bounds write in dsi_opensess.c
9.8 - Critical
- December 20, 2018
Netatalk before 3.1.12 is vulnerable to an out of bounds write in dsi_opensess.c. This is due to lack of bounds checking on attacker controlled data. A remote unauthenticated attacker can leverage this vulnerability to achieve arbitrary code execution.