VYPR

rpm package

suse/atftp&distro=SUSE Linux Enterprise Server 12 SP5

pkg:rpm/suse/atftp&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP5

Vulnerabilities (2)

  • CVE-2021-46671MedFeb 4, 2022
    affected < 0.7.0-160.14.1fixed 0.7.0-160.14.1

    options.c in atftp before 0.7.5 reads past the end of an array, and consequently discloses server-side /etc/group data to a remote client.

  • CVE-2021-41054HigSep 13, 2021
    affected < 0.7.0-160.11.1fixed 0.7.0-160.11.1

    tftpd_file.c in atftp through 0.7.4 has a buffer overflow because buffer-size handling does not properly consider the combination of data, OACK, and other options.