CVE-2021-41054

Опубликовано: 13 сент. 2021

Источник: debian

Описание

tftpd_file.c in atftp through 0.7.4 has a buffer overflow because buffer-size handling does not properly consider the combination of data, OACK, and other options.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
atftp	fixed	0.7.git20210915-1		package
atftp	fixed	0.7.git20120829-3.3+deb11u1	bullseye	package
atftp	fixed	0.7.git20120829-3.2~deb10u2	buster	package

Примечания

https://sourceforge.net/p/atftp/code/ci/d255bf90834fb45be52decf9bc0b4fb46c90f205/

Связанные уязвимости

CVE-2021-41054

CVSS3: 7.5

ubuntu

больше 4 лет назад

tftpd_file.c in atftp through 0.7.4 has a buffer overflow because buffer-size handling does not properly consider the combination of data, OACK, and other options.

CVE-2021-41054

CVSS3: 7.5

nvd

больше 4 лет назад

tftpd_file.c in atftp through 0.7.4 has a buffer overflow because buffer-size handling does not properly consider the combination of data, OACK, and other options.

CVE-2021-41054

CVSS3: 7.5

msrc

больше 4 лет назад

tftpd_file.c in atftp through 0.7.4 has a buffer overflow because buffer-size handling does not properly consider the combination of data OACK and other options.

SUSE-SU-2021:3237-1

suse-cvrf

больше 4 лет назад

Security update for atftp

GHSA-pjhr-q582-mpq7

github

больше 3 лет назад

tftpd_file.c in atftp through 0.7.4 has a buffer overflow because buffer-size handling does not properly consider the combination of data, OACK, and other options.