Zum Inhalt springen.
Sympa Menü

it-securitynotifies - [IT-SecNots] [SECURITY] [DSA 5503-1] netatalk security update

it-securitynotifies AT lists.piratenpartei.de

Betreff: Sicherheitsankündigungen

Listenarchiv

[IT-SecNots] [SECURITY] [DSA 5503-1] netatalk security update


Chronologisch Thread  
    < Chronologisch >       < Thread >
  • From: Moritz Muehlenhoff <jmm AT debian.org>
  • To: debian-security-announce AT lists.debian.org
  • Subject: [IT-SecNots] [SECURITY] [DSA 5503-1] netatalk security update
  • Date: Wed, 20 Sep 2023 17:47:57 +0000
  • Authentication-results: mail.piratenpartei.de; dkim=none; spf=none (mail.piratenpartei.de: domain of "bounce-debian-security-announce=it-securitynotifies=lists.piratenpartei.de AT lists.debian.org" has no SPF policy when checking 82.195.75.100) smtp.mailfrom="bounce-debian-security-announce=it-securitynotifies=lists.piratenpartei.de AT lists.debian.org"; dmarc=none
  • List-archive: https://lists.debian.org/msgid-search/ZQswTcf4iL2RVkaX AT seger.debian.org
  • List-id: <debian-security-announce.lists.debian.org>
  • List-url: <http://lists.debian.org/debian-security-announce/>
  • Old-dkim-signature: v=1; a=rsa-sha256; q=dns/txt; c=relaxed/relaxed; d=debian.org; s=smtpauto.seger; h=Content-Type:MIME-Version:Message-ID:Subject:To:From:Date :Reply-To:Cc:Content-Transfer-Encoding:Content-ID:Content-Description: In-Reply-To:References; bh=rNMDT+9MMUxAnKfx4gWd9B45wD6q/y1PR2eKm8ceRoM=; b=PQ N4RM+mZBPZXbskpdkFhORyBsBbGZGTWncnB6y5eVmPW/T6O1S1E5MNikpCImBm3moq6fqWlIJXxmV Jv2ZSzrHgZPsY7Apk9FAe6UHAr2g4DjzK7/0jGgI43wwNyEjImMD1D2e7QYETsU6qoNv7jtYj4FoZ XEow1VfKHeIZLeaXOPigOOEq+jtonzR4s5JrQq5WM+fOo+XBlrPOdU9BcLSMjMIgkWiRCuXNSn0bu SsURo5FNZsdoa9O/XtxY7Li/PvLSaYXzBVYhlP6nw8SV0/xDFMAkiYHK9mS9EBt4UJ8cVLbSAm/Nu 31hrjraSABMnt14wwaPpTRFDKgDWXYtA==;
  • Old-return-path: <jmm AT seger.debian.org>
  • Priority: urgent
  • Resent-date: Wed, 20 Sep 2023 17:48:36 +0000 (UTC)
  • Resent-from: debian-security-announce AT lists.debian.org
  • Resent-message-id: <KukoQo9vo4D.A.8mD.0BzClB@bendel>
  • Resent-sender: debian-security-announce-request AT lists.debian.org
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

- -------------------------------------------------------------------------
Debian Security Advisory DSA-5503-1 security AT debian.org
https://www.debian.org/security/ Moritz Muehlenhoff
September 20, 2023 https://www.debian.org/security/faq
- -------------------------------------------------------------------------

Package : netatalk
CVE ID : CVE-2021-31439 CVE-2022-0194 CVE-2022-23121 CVE-2022-23122
CVE-2022-23123 CVE-2022-23124 CVE-2022-23125 CVE-2022-43634
CVE-2022-45188 CVE-2023-42464
Debian Bug : 1051066

Multiple security issues were discovered in Netatalk, an implementation
of the Apple Filing Protocol (AFP) for offering file service (mainly) to
macOS clients, which may result in the execution of arbitrary code or
information disclosure.

For the oldstable distribution (bullseye), these problems have been fixed
in version 3.1.12~ds-8+deb11u1.

We recommend that you upgrade your netatalk packages.

For the detailed security status of netatalk please refer to
its security tracker page at:
https://security-tracker.debian.org/tracker/netatalk

Further information about Debian Security Advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://www.debian.org/security/

Mailing list: debian-security-announce AT lists.debian.org
-----BEGIN PGP SIGNATURE-----

iQIzBAEBCgAdFiEEtuYvPRKsOElcDakFEMKTtsN8TjYFAmULMA8ACgkQEMKTtsN8
TjYw9xAArA2NN4zvH7wC6Itn5ry9kZhQS4BhkCk10WXd0L77k2qzRRTMMw9OBmNn
Lk5w3/9oJhqBmtNkLerfBCSMA1aQFQfWOefJnywY/2lYYSS6Uc18Xze78CW4w2O1
/EkK836N6vSVuptjlcvTFGc61XUpbaZJ8CN4ipb2A0tNgp7Ja+Hrz4RgnrS2ppKP
gmNuZ5iDcX9N9PohNPTnHc4jQkRscuPN1lsPDrc0OP4E2V7oFm8G7EKexO9BtREq
eznaj0Bkcbvddquqz4dnPXOYjkXzoedvGYmI2J5EigIiBMNugL02zExbuhVCmVNl
it29LDVAbgNpPgbUi9NRRe9EMXHI+XFgp/xB34jtyq3617SBPLelLBP/e41Bqnua
E8C+37uxvIcSgbVibpzhtHkiXTffOpqR3mduXG/VrbuvqO7yzw1sjXrks867wV1Q
rQPbX1O99sY+wg69jdyS/QTUQYHkDSGW2Ud+9u7Pv6Bkh/ibXIxHcNiWKaE2LPJi
a8mWurmV/r4l325E09jJGxZON4CKiU50+FMKLi8Eo+uXdKDL+dyey9GQBBWQIU0n
zg4oJQ/59oGnTib2C52hyZU6xtQbdCceqP2M+4/x75xtCkR5pLcvTnDqRBvnyYBv
REbFCz3X46cdxzkbeu/SQWIBLAGXv7yktz8YX8y5Q6h4798FpVY=
=jmG2
-----END PGP SIGNATURE-----


  • [IT-SecNots] [SECURITY] [DSA 5503-1] netatalk security update, Moritz Muehlenhoff, 20.09.2023

Archiv bereitgestellt durch MHonArc 2.6.24.

Seitenanfang