CVE-2024-38439 Information

Description

Netatalk 3.2.0 has an off-by-one error and resultant heap-based buffer overflow because of setting ibuf[PASSWDLEN] to ‘\0’ in FPLoginExt in login in etc/uams/uams_pam.c.

Reference

https://github.com/Netatalk/netatalk/issues/1096