📦 Netatalk

CVE-2024-38439 is a critical heap-based buffer overflow vulnerability in Netatalk's PAM authentication module. An attacker can exploit this to execute arbitrary code or crash the service, potentially ...

This CVE describes a heap-based buffer overflow vulnerability in Netatalk's AFP service due to an off-by-one error when processing file/directory names. Attackers can exploit this to execute arbitrary...

A Type Confusion vulnerability in Netatalk's afpd service allows remote attackers to potentially execute arbitrary code by sending malicious Spotlight RPC packets. This affects Netatalk 3.1.x versions...

CVE-2022-43634 is a critical heap-based buffer overflow vulnerability in Netatalk's dsi_writeinit function that allows unauthenticated remote attackers to execute arbitrary code with root privileges. ...

CVE-2022-23121 is a critical remote code execution vulnerability in Netatalk's AppleDouble parsing functionality. Unauthenticated attackers can exploit this flaw to execute arbitrary code with root pr...

CVE-2022-23123 is a critical out-of-bounds read vulnerability in Netatalk's getdirparams method that allows unauthenticated remote attackers to read sensitive memory contents. This information disclos...

CVE-2022-23125 is a critical stack-based buffer overflow vulnerability in Netatalk's copyapplfile function that allows unauthenticated remote attackers to execute arbitrary code as root. This affects ...

CVE-2022-0194 is a critical stack-based buffer overflow vulnerability in Netatalk's ad_addcomment function that allows unauthenticated remote attackers to execute arbitrary code as root. This affects ...

CVE-2018-1160 is a critical vulnerability in Netatalk that allows remote unauthenticated attackers to execute arbitrary code due to an out-of-bounds write in dsi_opensess.c. It affects systems running...

CVE-2022-45188 is a heap-based buffer overflow vulnerability in Netatalk's afp_getappl function that allows remote code execution via a malicious .appl file. This affects Netatalk versions through 3.1...

This is a heap-based buffer overflow vulnerability in Netatalk's DSI structure processing that allows unauthenticated attackers on the same network to execute arbitrary code on Synology DiskStation Ma...