Bug#994895: atftpd: buffer overflow, CVE-2021-41054

[Andreas B. Mundt]

Package: atftpd
Version: 0.7.git20120829-3.2~deb10u1 0.7.git20120829-3.3
Severity: important
Tags: patch upstream
X-Debbugs-Cc: a...@debian.org

Hi,

this bug report tracks the fixes for CVE-2021-41054 in buster and bullseye.
Related links can be found in the security tracker:

    https://security-tracker.debian.org/tracker/CVE-2021-41054

The upstream patch is here:
   
    
https://sourceforge.net/p/atftp/code/ci/d255bf90834fb45be52decf9bc0b4fb46c90f205/

Regards,

  Andi