Netatalk up to and including 3.1.13 has an afp_getappl heap-based buffer overflow resulting in code execution via a crafted .appl file. This provides remote root access on some platforms such as FreeBSD (used for TrueNAS).
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
netatalk netatalk |
||
debian debian linux 10.0 |
||
debian debian linux 11.0 |
||
fedoraproject fedora 36 |
||
fedoraproject fedora 37 |
||
fedoraproject fedora 38 |