Re: Bug#1036740: Fix for CVE-2022-23123 causes afpd segfault with valid metadata

To: Salvatore Bonaccorso <carnil@debian.org>, Daniel Markstedt <markstedt@gmail.com>, 1036740@bugs.debian.org
Cc: debian-lts@lists.debian.org
Subject: Re: Bug#1036740: Fix for CVE-2022-23123 causes afpd segfault with valid metadata
From: Markus Koschany <apo@debian.org>
Date: Thu, 25 May 2023 12:37:20 +0200
Message-id: <[🔎] a4b4a0b149a548ca48c87d06fc65cae7bf1630ff.camel@debian.org>
In-reply-to: <ZG75/KQGRmqFfZB5@eldamar.lan>
References: <CAKnbzovSj379+mbj4nUi6+mMw7B68K2yreU78N5xaLEzzdu9bg@mail.gmail.com> <ZG75/KQGRmqFfZB5@eldamar.lan>

Hello Daniel,

Am Donnerstag, dem 25.05.2023 um 08:02 +0200 schrieb Salvatore Bonaccorso:
> > 
> > These two commits in upstream addressed this:
> > https://github.com/Netatalk/netatalk/commit/9d0c21298363e8174cdfca657e66c4d10819507b
> > https://github.com/Netatalk/netatalk/commit/4140e5495bac42ecb9b11975229c81e84762cc98

Both patches have been backported to Buster. You can find them as CVE-2022-
23123_part3.patch and CVE-2022-23123_part4.patch.

Did we miss something else?

Regards,

Markus

Attachment: signature.asc
Description: This is a digitally signed message part

Reply to:

Follow-Ups:
- Re: [Pkg-netatalk-devel] Bug#1036740: Fix for CVE-2022-23123 causes afpd segfault with valid metadata
  - From: Daniel Markstedt <markstedt@gmail.com>

References:
- Re: Bug#1036740: Fix for CVE-2022-23123 causes afpd segfault with valid metadata
  - From: Salvatore Bonaccorso <carnil@debian.org>

Prev by Date: Re: Bug#1036740: Fix for CVE-2022-23123 causes afpd segfault with valid metadata
Next by Date: Re: [Pkg-netatalk-devel] Bug#1036740: Fix for CVE-2022-23123 causes afpd segfault with valid metadata
Previous by thread: Re: Bug#1036740: Fix for CVE-2022-23123 causes afpd segfault with valid metadata
Next by thread: Re: [Pkg-netatalk-devel] Bug#1036740: Fix for CVE-2022-23123 causes afpd segfault with valid metadata
Index(es):
- Date
- Thread