CVE-2024-38439

  1. OpenCVE
  2. Vulnerabilities (CVE)
  3. CVE-2024-38439
Netatalk before 3.2.1 has an off-by-one error and resultant heap-based buffer overflow because of setting ibuf[PASSWDLEN] to '\0' in FPLoginExt in login in etc/uams/uams_pam.c. 2.4.1 and 3.1.19 are also fixed versions.

9.8 /10

CVSS v3.0 : CRITICAL

V3 Legend

Vector :

Exploitability : 3.9 / Impact : 5.9

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required NONE

User Interaction NONE

Confidentiality Impact HIGH

Integrity Impact HIGH

Availability Impact HIGH

Scope UNCHANGED

References
Link Resource
https://github.com/Netatalk/netatalk/issues/1096 Broken Link Not Applicable
https://github.com/Netatalk/netatalk/blob/90d91a9ac9a7d6132ab7620d31c8c23400949206/etc/uams/uams_pam.c#L316 Product
https://github.com/Netatalk/netatalk/security/advisories/GHSA-8r68-857c-4rqc Exploit Vendor Advisory
https://netatalk.io/security/CVE-2024-38439 Patch Vendor Advisory
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:netatalk:netatalk:3.2.0:*:*:*:*:*:*:*
cpe:2.3:a:netatalk:netatalk:*:*:*:*:*:*:*:*
cpe:2.3:a:netatalk:netatalk:*:*:*:*:*:*:*:*
History

07 Aug 2024, 19:28

Type Values Removed Values Added
CPE cpe:2.3:a:netatalk:netatalk:3.2.0:*:*:*:*:*:*:*
cpe:2.3:a:netatalk:netatalk:*:*:*:*:*:*:*:*
First Time Netatalk netatalk
Netatalk
CWE CWE-787
CVSS v2 : unknown
v3 : unknown 		v2 : unknown
v3 : 9.8
References () https://github.com/Netatalk/netatalk/security/advisories/GHSA-8r68-857c-4rqc - () https://github.com/Netatalk/netatalk/security/advisories/GHSA-8r68-857c-4rqc - Exploit, Vendor Advisory
References () https://github.com/Netatalk/netatalk/blob/90d91a9ac9a7d6132ab7620d31c8c23400949206/etc/uams/uams_pam.c#L316 - () https://github.com/Netatalk/netatalk/blob/90d91a9ac9a7d6132ab7620d31c8c23400949206/etc/uams/uams_pam.c#L316 - Product
References () https://netatalk.io/security/CVE-2024-38439 - () https://netatalk.io/security/CVE-2024-38439 - Patch, Vendor Advisory
References () https://github.com/Netatalk/netatalk/issues/1096 - () https://github.com/Netatalk/netatalk/issues/1096 - Broken Link, Not Applicable

30 Jun 2024, 12:15

Type Values Removed Values Added
Summary Netatalk 3.2.0 has an off-by-one error and resultant heap-based buffer overflow because of setting ibuf[PASSWDLEN] to '\0' in FPLoginExt in login in etc/uams/uams_pam.c. Netatalk before 3.2.1 has an off-by-one error and resultant heap-based buffer overflow because of setting ibuf[PASSWDLEN] to '\0' in FPLoginExt in login in etc/uams/uams_pam.c. 2.4.1 and 3.1.19 are also fixed versions.
References
  • () https://netatalk.io/security/CVE-2024-38439 -
  • () https://github.com/Netatalk/netatalk/security/advisories/GHSA-8r68-857c-4rqc -

19 Jun 2024, 15:15

Type Values Removed Values Added
References
  • () https://github.com/Netatalk/netatalk/blob/90d91a9ac9a7d6132ab7620d31c8c23400949206/etc/uams/uams_pam.c#L316 -

16 Jun 2024, 13:15

Type Values Removed Values Added
New CVE
Information

Published : 2024-06-16 13:15

Updated : 2024-08-22 17:35

NVD link : CVE-2024-38439

Mitre link : CVE-2024-38439

JSON object : View

Products Affected

netatalk

  • netatalk
CWE
CWE-787

Out-of-bounds Write