Ubuntu Security Notice USN-4540-1

Discussion in 'News Aggregator' started by Packet Storm, 26 Sep 2020.

  1. Packet Storm

    Packet Storm Guest

    Ubuntu Security Notice 4540-1 - Denis Andzakovic discovered that atftpd incorrectly handled certain malformed packets. A remote attacker could send a specially crafted packet to cause atftpd to crash, resulting in a denial of service. Denis Andzakovic discovered that atftpd did not properly lock the thread list mutex. An attacker could send a large number of tftpd packets simultaneously when running atftpd in daemon mode to cause atftpd to crash, resulting in a denial of service. Various other issues were also addressed.

    Continue reading...
     

Share This Page

Loading...