VulnerableCode Package Details - pkg:deb/debian/atftp@0.7.git20120829-3.3%2Bdeb11u2

Search for packages

Vulnerability	Summary	Fixed by
This package is not known to be affected by vulnerabilities.

Vulnerability

Summary

Fixed by

This package is not known to be affected by vulnerabilities.

Vulnerability	Summary	Aliases
VCID-8gv8-qwdd-5fd2	tftpd_file.c in atftp through 0.7.4 has a buffer overflow because buffer-size handling does not properly consider the combination of data, OACK, and other options.	CVE-2021-41054
VCID-p7hs-4pdm-2qcw	options.c in atftp before 0.7.5 reads past the end of an array, and consequently discloses server-side /etc/group data to a remote client.	CVE-2021-46671
VCID-r2dj-7m5m-7fgq	An exploitable denial of service vulnerability exists in the atftpd daemon functionality of atftp 0.7.git20120829-3.1+b1. A specially crafted sequence of RRQ-Multicast requests trigger an assert() call resulting in denial-of-service. An attacker can send a sequence of malicious packets to trigger this vulnerability.	CVE-2020-6097

Vulnerability

Summary

Aliases

VCID-8gv8-qwdd-5fd2

tftpd_file.c in atftp through 0.7.4 has a buffer overflow because buffer-size handling does not properly consider the combination of data, OACK, and other options.

CVE-2021-41054

VCID-p7hs-4pdm-2qcw

options.c in atftp before 0.7.5 reads past the end of an array, and consequently discloses server-side /etc/group data to a remote client.

CVE-2021-46671

VCID-r2dj-7m5m-7fgq

An exploitable denial of service vulnerability exists in the atftpd daemon functionality of atftp 0.7.git20120829-3.1+b1. A specially crafted sequence of RRQ-Multicast requests trigger an assert() call resulting in denial-of-service. An attacker can send a sequence of malicious packets to trigger this vulnerability.

CVE-2020-6097

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2026-04-15T22:52:10.616821+00:00	Debian Oval Importer	Fixing	VCID-r2dj-7m5m-7fgq	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-15T18:56:50.214818+00:00	Debian Oval Importer	Fixing	VCID-p7hs-4pdm-2qcw	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-15T18:14:29.672977+00:00	Debian Oval Importer	Fixing	VCID-8gv8-qwdd-5fd2	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-11T22:28:42.770548+00:00	Debian Oval Importer	Fixing	VCID-r2dj-7m5m-7fgq	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-11T18:41:04.086568+00:00	Debian Oval Importer	Fixing	VCID-p7hs-4pdm-2qcw	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-11T17:59:55.186731+00:00	Debian Oval Importer	Fixing	VCID-8gv8-qwdd-5fd2	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-08T22:04:27.481476+00:00	Debian Oval Importer	Fixing	VCID-r2dj-7m5m-7fgq	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-08T18:26:12.675162+00:00	Debian Oval Importer	Fixing	VCID-p7hs-4pdm-2qcw	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-08T17:46:34.457633+00:00	Debian Oval Importer	Fixing	VCID-8gv8-qwdd-5fd2	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0