Netatalk 3.2.0 has an off-by-one error and resultant heap...
Critical severity
Unreviewed
Published
Jun 16, 2024
to the GitHub Advisory Database
•
Updated Aug 5, 2024
Description
Published by the National Vulnerability Database
Jun 16, 2024
Published to the GitHub Advisory Database
Jun 16, 2024
Last updated
Aug 5, 2024
Netatalk 3.2.0 has an off-by-one error and resultant heap-based buffer overflow because of setting ibuf[len] to '\0' in FPMapName in afp_mapname in etc/afp/directory.c.
References