Alerts This Week
Warning Icon 1 916
Alerts This Week
Warning Icon 1 916

Debian 9: DLA-2820-1 Moderate: Atftp Buffer Overflow Threat

debian lts
Calendar Grey November 16, 2021
Dist Debian Esm H88
Debian LTS Advisory DLA-2821-1 outlines vulnerabilities in the package libxml2, addressing critical memory corruption flaws and providing fixes to enhance stability and security.
Two issues have been found in atftp, an advanced TFTP client
Topics%20covered

Topics Covered

security advisory denial of service buffer overflow software update Debian atftp

Summary

Two issues have been found in atftp, an advanced TFTP client.
Both are related to sending crafted requests to the server and triggering
a denial-of-service due to for example a buffer overflow.


For Debian 9 stretch, these problems have been fixed in version
0.7.git20120829-3.1~deb9u2.

We recommend that you upgrade your atftp packages.

For the detailed security status of atftp please refer to
its security tracker page at:
https://security-tracker.debian.org/tracker/source-package/atftp

Further information about Debian LTS security advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://wiki.debian.org/LTS



Package: atftp
Version: 0.7.git20120829-3.1~deb9u2
CVE ID: CVE-2020-6097 CVE-2021-41054

Topics%20covered

Topics Covered

security advisory denial of service buffer overflow software update Debian atftp

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here