Monitor vulnerabilities like this one.
Sign up free to get alerted when software you use is affected.
9.9
Debian Linux: Unprivileged users can gain elevated privileges
DEBIAN-CVE-2026-44050
Summary
A vulnerability in Debian Linux allows an attacker with normal user privileges to gain full control over the system. This could be exploited by a malicious user to install malware, delete or modify files, and disrupt system operations. Debian users should update their systems to the latest version to address this issue.
What to do
- Update debian netatalk to version 4.2.3~ds-1+deb13u2.
- Update debian netatalk to version 4.4.3~ds-1.
Affected software
| Ecosystem | Vendor | Product | Affected versions |
|---|---|---|---|
| Debian:11 | debian | netatalk | All versions |
| Debian:13 | debian | netatalk |
< 4.2.3~ds-1+deb13u2 Fix: upgrade to 4.2.3~ds-1+deb13u2
|
| Debian:14 | debian | netatalk |
< 4.4.3~ds-1 Fix: upgrade to 4.4.3~ds-1
|
Original title
A heap-based buffer overflow in the CNID daemon comm_rcv() function in Netatalk 2.0.0 through 4.4.2 allows a remote authenticated attacker to execute arbitrary code with escalated privileges or cau...
Original description
A heap-based buffer overflow in the CNID daemon comm_rcv() function in Netatalk 2.0.0 through 4.4.2 allows a remote authenticated attacker to execute arbitrary code with escalated privileges or cause a denial of service.
- https://security-tracker.debian.org/tracker/CVE-2026-44050 Vendor Advisory
Published: 21 May 2026 · Updated: 22 May 2026 · First seen: 14 May 2026