Peter Wang discovered that atftp did not properly manage certain inputs. A remote attacker could send a specially crafted tftp request to the server to cause a crash. (CVE-2020-6097)
Andreas B. Mundt discovered that atftp did not properly manage certain inputs. A remote attacker could send a specially crafted tftp request to the server to cause a crash. (CVE-2021-41054)
Johannes Krupp discovered that atftp did not properly manage certain inputs. A remote attacker could send a specially crafted tftp request to the server and make the server to disclose /etc/group data. (CVE-2021-46671)
{ "availability": "Available with Ubuntu Pro: https://ubuntu.com/pro", "binaries": [ { "binary_name": "atftp", "binary_version": "0.7.git20120829-3.1~0.16.04.1+esm1" }, { "binary_name": "atftp-dbgsym", "binary_version": "0.7.git20120829-3.1~0.16.04.1+esm1" }, { "binary_name": "atftpd", "binary_version": "0.7.git20120829-3.1~0.16.04.1+esm1" }, { "binary_name": "atftpd-dbgsym", "binary_version": "0.7.git20120829-3.1~0.16.04.1+esm1" } ] }
{ "availability": "Available with Ubuntu Pro: https://ubuntu.com/pro", "binaries": [ { "binary_name": "atftp", "binary_version": "0.7.git20120829-3.1~0.18.04.1+esm1" }, { "binary_name": "atftp-dbgsym", "binary_version": "0.7.git20120829-3.1~0.18.04.1+esm1" }, { "binary_name": "atftpd", "binary_version": "0.7.git20120829-3.1~0.18.04.1+esm1" }, { "binary_name": "atftpd-dbgsym", "binary_version": "0.7.git20120829-3.1~0.18.04.1+esm1" } ] }
{ "availability": "No subscription required", "binaries": [ { "binary_name": "atftp", "binary_version": "0.7.git20120829-3.1ubuntu0.1" }, { "binary_name": "atftp-dbgsym", "binary_version": "0.7.git20120829-3.1ubuntu0.1" }, { "binary_name": "atftpd", "binary_version": "0.7.git20120829-3.1ubuntu0.1" }, { "binary_name": "atftpd-dbgsym", "binary_version": "0.7.git20120829-3.1ubuntu0.1" } ] }