atftp 0.7.git20120829-3.1ubuntu0.1 source package in Ubuntu
Changelog
atftp (0.7.git20120829-3.1ubuntu0.1) focal-security; urgency=medium
* SECURITY UPDATE: assertion failure makes the service to crash
- debian/patches/CVE-2020-6097.patch: returns an error message string for
unsupported cases instead of calling assert().
- CVE-2020-6097
* SECURITY UPDATE: buffer overflow makes the service to crash
- debian/patches/CVE-2021-41054.patch: ensures that the buffer-size is
enough for the combination of data, OACK, and other options.
- CVE-2021-41054
* SECURITY UPDATE: buffer over-read discloses server-side /etc/group data
- debian/patches/CVE-2021-46671.patch: prevents argz_next from reading
past the end of data.
- CVE-2021-46671
-- Jorge Sancho Larraz <email address hidden> Wed, 30 Aug 2023 17:27:00 +0200
Upload details
- Uploaded by:
- Jorge Sancho Larraz
- Uploaded to:
- Focal
- Original maintainer:
- Ubuntu Developers
- Architectures:
- any
- Section:
- net
- Urgency:
- Medium Urgency
See full publishing history Publishing
| Series | Published | Component | Section | |
|---|---|---|---|---|
| Focal | updates | universe | net | |
| Focal | security | universe | net |
Downloads
| File | Size | SHA-256 Checksum |
|---|---|---|
| atftp_0.7.git20120829.orig.tar.gz | 88.8 KiB | d93a302ead76a0629feb061768df4393f9da02e3ffbf25eb10d281082ecf02d0 |
| atftp_0.7.git20120829-3.1ubuntu0.1.diff.gz | 37.8 KiB | 81ca5cab1bca5dcc814316493937ce109303c9c1cf1cd4d8e638dda753819522 |
| atftp_0.7.git20120829-3.1ubuntu0.1.dsc | 1.9 KiB | 81efa1642d4b3afc2dc241f858d05434c9308723a9c3f2403b272985e365c2be |
Available diffs
Binary packages built by this source
- atftp: advanced TFTP client
Interactive client for the Trivial File Transfer Protocol (TFTP). Its
usage is mainly for testing and debugging the Atftp server. TFTP client
is usually implemented in BIOS and bootstraps programs like pxelinux when
booting from LAN. Atftp also supports non-interactive invocation for
easy use in scripts.
- atftp-dbgsym: debug symbols for atftp
- atftpd: advanced TFTP server
Multi-threaded TFTP server implementing all options (option extension and
multicast) as specified in RFC1350, RFC2090, RFC2347, RFC2348 and RFC2349.
Atftpd also supports multicast protocol known as mtftp, defined in the PXE
specification. The server supports being started from inetd(8) as well as
in daemon mode using init scripts.
- atftpd-dbgsym: debug symbols for atftpd
