| Release | Version |
|---|---|
| bullseye | 3.1.12~ds-8+deb11u1 |
| bullseye (security) | 3.1.12~ds-8+deb11u2 |
| trixie | 4.2.3~ds-1+deb13u1 |
| forky | 4.4.2~ds-1 |
| sid | 4.4.2~ds-1 |
| Bug | bullseye | trixie | forky | sid | Description |
|---|---|---|---|---|---|
| CVE-2026-45699 | vulnerable | vulnerable | vulnerable | vulnerable | |
| CVE-2026-45698 | vulnerable | vulnerable | vulnerable | vulnerable | |
| CVE-2026-45356 | vulnerable | vulnerable | vulnerable | vulnerable | |
| CVE-2026-45355 | vulnerable | vulnerable | vulnerable | vulnerable | |
| CVE-2026-45354 | vulnerable | vulnerable | vulnerable | vulnerable | |
| CVE-2026-44076 | vulnerable | vulnerable | vulnerable | vulnerable | |
| CVE-2026-44068 | vulnerable | vulnerable | vulnerable | vulnerable | |
| CVE-2026-44067 | vulnerable | vulnerable (no DSA, postponed) | vulnerable | vulnerable | |
| CVE-2026-44066 | vulnerable | vulnerable | vulnerable | vulnerable | |
| CVE-2026-44065 | vulnerable | vulnerable (no DSA, postponed) | vulnerable | vulnerable | |
| CVE-2026-44064 | vulnerable | vulnerable | vulnerable | vulnerable | |
| CVE-2026-44063 | vulnerable | vulnerable (no DSA, postponed) | vulnerable | vulnerable | |
| CVE-2026-44062 | vulnerable | vulnerable | vulnerable | vulnerable | |
| CVE-2026-44061 | vulnerable | vulnerable (no DSA, postponed) | vulnerable | vulnerable | |
| CVE-2026-44060 | vulnerable | vulnerable | vulnerable | vulnerable | |
| CVE-2026-44058 | vulnerable | vulnerable (no DSA, postponed) | vulnerable | vulnerable | |
| CVE-2026-44057 | vulnerable | vulnerable | vulnerable | vulnerable | |
| CVE-2026-44056 | vulnerable | vulnerable (no DSA, postponed) | vulnerable | vulnerable | |
| CVE-2026-44055 | vulnerable | vulnerable | vulnerable | vulnerable | |
| CVE-2026-44054 | vulnerable | vulnerable | vulnerable | vulnerable | |
| CVE-2026-44053 | vulnerable | vulnerable (no DSA, postponed) | vulnerable | vulnerable | |
| CVE-2026-44052 | vulnerable | vulnerable | vulnerable | vulnerable | |
| CVE-2026-44051 | vulnerable | vulnerable | vulnerable | vulnerable | |
| CVE-2026-44050 | vulnerable | vulnerable | vulnerable | vulnerable | |
| CVE-2026-44049 | vulnerable | vulnerable | vulnerable | vulnerable | |
| CVE-2026-44048 | vulnerable | vulnerable | vulnerable | vulnerable | |
| CVE-2026-44047 | vulnerable | vulnerable | vulnerable | vulnerable |
| Bug | bullseye | trixie | forky | sid | Description |
|---|---|---|---|---|---|
| CVE-2026-44075 | vulnerable | vulnerable | vulnerable | vulnerable | |
| CVE-2026-44074 | vulnerable | vulnerable | vulnerable | vulnerable | |
| CVE-2026-44073 | vulnerable | vulnerable | vulnerable | vulnerable | |
| CVE-2026-44072 | vulnerable | vulnerable | vulnerable | vulnerable | |
| CVE-2026-44071 | vulnerable | vulnerable | vulnerable | vulnerable | |
| CVE-2026-44070 | vulnerable | vulnerable | vulnerable | vulnerable | |
| CVE-2026-44069 | vulnerable | vulnerable | vulnerable | vulnerable | |
| CVE-2026-44059 | vulnerable | vulnerable | vulnerable | vulnerable | |
| CVE-2026-7837 | vulnerable | vulnerable | vulnerable | vulnerable | |
| CVE-2026-7836 | vulnerable | vulnerable | vulnerable | vulnerable | |
| CVE-2026-7835 | vulnerable | vulnerable | vulnerable | vulnerable |
| Bug | Description |
|---|---|
| CVE-2024-38441 | Netatalk before 3.2.1 has an off-by-one error and resultant heap-based ... |
| CVE-2024-38440 | Netatalk before 3.2.1 has an off-by-one error, and resultant heap-base ... |
| CVE-2024-38439 | Netatalk before 3.2.1 has an off-by-one error and resultant heap-based ... |
| CVE-2023-42464 | A Type Confusion vulnerability was found in the Spotlight RPC function ... |
| CVE-2022-45188 | Netatalk through 3.1.13 has an afp_getappl heap-based buffer overflow ... |
| CVE-2022-43634 | This vulnerability allows remote attackers to execute arbitrary code o ... |
| CVE-2022-23125 | This vulnerability allows remote attackers to execute arbitrary code o ... |
| CVE-2022-23124 | This vulnerability allows remote attackers to disclose sensitive infor ... |
| CVE-2022-23123 | This vulnerability allows remote attackers to disclose sensitive infor ... |
| CVE-2022-23122 | This vulnerability allows remote attackers to execute arbitrary code o ... |
| CVE-2022-23121 | This vulnerability allows remote attackers to execute arbitrary code o ... |
| CVE-2022-22995 | The combination of primitives offered by SMB and AFP in their default ... |
| CVE-2022-0194 | This vulnerability allows remote attackers to execute arbitrary code o ... |
| CVE-2021-31439 | This vulnerability allows network-adjacent attackers to execute arbitr ... |
| CVE-2018-1160 | Netatalk before 3.1.12 is vulnerable to an out of bounds write in dsi_ ... |
| CVE-2008-5718 | The papd daemon in Netatalk before 2.0.4-beta2, when using certain var ... |
| CVE-2004-0974 | The netatalk package in Trustix Secure Linux 1.5 through 2.1, and poss ... |
| DSA / DLA | Description |
|---|---|
| DLA-3968-1 | netatalk - security update |
| DLA-3706-1 | netatalk - security update |
| DLA-3584-1 | netatalk - security update |
| DSA-5503-1 | netatalk - security update |
| DLA-3426-3 | netatalk - regression update |
| DLA-3426-2 | netatalk - regression update |
| DLA-3426-1 | netatalk - security update |
| DSA-4356-1 | netatalk - security update |
| DSA-1705-1 | netatalk - arbitrary code execution |