Updated netatalk packages fix security vulnerability
Publication date: 03 Feb 2019Type: security
Affected Mageia releases : 6
CVE: CVE-2018-1160
Description
Jacob Baines discovered a flaw in the handling of the DSI Opensession command in Netatalk, allowing an unauthenticated user to execute arbitrary code with root privileges (CVE-2018-1160).
References
SRPMS
6/core
- netatalk-3.1.12-1.1.mga6