[3.9] netatalk: Unauthenticated remote code execution (CVE-2018-1160)ID: oval:org.secpod.oval:def:1802050 | Date: (C)2022-03-25 (M)2023-10-05 |
Class: PATCH | Family: unix |
Netatalk before 3.1.12 is vulnerable to an out of bounds write in dsi_opensess.c. This is due to lack of bounds checking on attacker controlled data. A remote unauthenticated attacker can leverage this vulnerability to achieve arbitrary code execution.added Normal tag:security type:bug + 1 deleted labelremoved 1 deleted label
Platform: |
Alpine Linux 3.10 |
Alpine Linux 3.11 |
Alpine Linux 3.12 |
Alpine Linux 3.13 |
Alpine Linux 3.14 |
Alpine Linux 3.15 |
Alpine Linux 3.9 |