Advisories » MGASA-2024-0201

Updated netatalk packages fix security vulnerability

Publication date: 31 May 2024
Modification date: 31 May 2024
Type: security
Affected Mageia releases : 9
CVE: CVE-2022-22995

Description

The combination of primitives offered by SMB and AFP in their default
configuration allows the arbitrary writing of files. By exploiting these
combination of primitives, an attacker can execute arbitrary code.
                

References

• https://bugs.mageia.org/show_bug.cgi?id=33249
• https://ubuntu.com/security/notices/USN-6786-1
• https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22995

SRPMS

9/core

• netatalk-3.1.14-2.3.mga9