Alerts This Week
Warning Icon 1 758
Alerts This Week
Warning Icon 1 758

Ubuntu 22.04 LTS USN-6786-1 Moderate: Netatalk Remote Code Execution

ubuntu
Calendar Grey May 28, 2024
Dist Ubuntu Esm H88
A recent security notice about Netatalk uncovers vulnerabilities allowing arbitrary code execution on Ubuntu versions 22.04 and 20.04 LTS, providing essential update information.
Netatalk could allow arbitrary code execution if it receives a specially crafted input.

Summary

Netatalk could allow arbitrary code execution if it receives a specially

crafted input.

Software Description:

- netatalk: Apple Filing Protocol service

Details:

It was discovered that Netatalk did not properly protect an SMB and AFP

default configuration. A remote attacker could possibly use this issue to

execute arbitrary code.

Update Instructions

The problem can be corrected by updating your system to the following
package versions:

Ubuntu 22.04 LTS
   netatalk                        3.1.12~ds-9ubuntu0.22.04.3+esm1
                                   Available with Ubuntu Pro

Ubuntu 20.04 LTS
   netatalk                        3.1.12~ds-4ubuntu0.20.04.3+esm1
                                   Available with Ubuntu Pro

In general, a standard system update will make all the necessary changes.

References

https://ubuntu.com/security/notices/USN-6786-1

CVE-2022-22995

Severity
important
Lowest
Low
Medium
High
Critical

Ubuntu Security Notice USN-6786-1

Package Information

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here