CVE-2024-38440 Information

Description

Netatalk 3.2.0 has an off-by-one error and resultant heap-based buffer overflow because of incorrectly using FPLoginExt in BN_bin2bn in etc/uams/uams_dhx_pam.c.

Reference

https://github.com/Netatalk/netatalk/issues/1097