CVE-2022-45188

Netatalk through 3.1.13 has an afp_getappl heap-based buffer overflow resulting in code execution via a crafted .appl file. This provides remote root access on some platforms such as FreeBSD (used for TrueNAS).

Date published : 2022-11-11

https://netatalk.sourceforge.io/3.1/ReleaseNotes3.1.13.html

https://netatalk.sourceforge.io/3.1/ReleaseNotes3.1.14.html