Primary

Context

Netatalk Off-by-Two Vulnerability in papd lp_write() Function

Vulnerability

Patched

A buffer overflow vulnerability has been identified in Netatalk versions 2.0.0 through 4.4.2. The issue arises from an off-by-two error in the 'papd' service's 'lp_write()' function, which can lead to a temporary buffer being overwritten. This vulnerability is remotely exploitable, but only under specific conditions when the affected printing configuration is active. The most likely consequence of this vulnerability is a denial-of-service condition.

Impact

Exploitation of this vulnerability can cause a denial-of-service condition by overrunning a temporary buffer, which may disrupt normal service operations.

Remediation

Users can upgrade to Netatalk version 4.5.0 or later, which includes the necessary patch. Alternatively, version 4.4.2 can be patched manually by applying the 'CVE-2026-44065.patch' available in the Netatalk GitHub repository.

Added: May 21, 2026, 8:50 AM

Updated: May 21, 2026, 8:50 AM

Vulnerability Rating

Custom Algorithm

spread

4.5

impact

3.1

exploitability

4.9

remediation

8.3

relevance

9.0

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

4.5

impact

3.1

exploitability

4.9

remediation

8.3

relevance

9.0

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Netatalk Off-by-Two Vulnerability in papd lp_write() Function

Vulnerability

Impact

Remediation

Affected Products

Netatalk

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating