VDB
CVE-2019-11366
CVE-2019-11366
PUBLISHED
An issue was discovered in atftpd in atftp 0.7.1. It does not lock the thread_list_mutex mutex before assigning the current thread data structure. As a result, the daemon is vulnerable to a denial of service attack due to a NULL pointer dereference. If thread_data is NULL when assigned to current, and modified by another thread before a certain tftpd_list.c check, there is a crash when dereferencing current->next.
EPSS 1.28% · 80.0th percentile
Risk Scores
EPSS Score
1.28%
80.0th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Ubuntu:16.04:LTS | atftp | 0, * |
| Ubuntu:18.04:LTS | atftp | 0, 0.7.git20120829-3 |
Exploit Intelligence
- https://pulsesecurity.co.nz/advisories/atftpd-multiple-vulnerabilities (nist-nvd)
- https://sourceforge.net/p/atftp/code/ci/382f76a90b44f81fec00e2f609a94def4a5d3580/ (circl)
- DSA-4438 (circl)
- 20190508 [SECURITY] [DSA 4438-1] atftp security update (circl)
- [debian-lts-announce] 20190512 [SECURITY] [DLA 1783-1] atftp security update (circl)
- GLSA-202003-14 (circl)
- USN-4540-1 (circl)
Timeline
- Apr 20, 2019 CVE Published
- Apr 14, 2021 EPSS Score
- Jun 23, 2021 EPSS Score
- Oct 26, 2021 EPSS Score
- Dec 27, 2021 EPSS Score
- Jan 6, 2022 EPSS Score
- Feb 4, 2022 EPSS Score
- Apr 1, 2022 EPSS Score
- May 1, 2022 EPSS Score
- Jul 3, 2022 EPSS Score
- Sep 4, 2022 EPSS Score
- Jan 8, 2023 EPSS Score
References
- https://ubuntu.com/security/CVE-2019-11366 third-party-advisory
- https://pulsesecurity.co.nz/advisories/atftpd-multiple-vulnerabilities third-party-advisory
- https://sourceforge.net/p/atftp/code/ci/382f76a90b44f81fec00e2f609a94def4a5d3580/ third-party-advisory
- https://ubuntu.com/security/notices/USN-4540-1 vendor-advisory
- https://ubuntu.com/security/notices/USN-4643-1 vendor-advisory
- https://www.cve.org/CVERecord?id=CVE-2019-11366 third-party-advisory