Netatalk Path Traversal Vulnerability in Extended Attribute Handling

A path traversal vulnerability has been identified in Netatalk versions 2.1.0 through 4.4.2. This issue arises from incomplete sanitization of extended attribute names during file operations, allowing an authenticated AFP user to manipulate files within their filesystem permissions. The vulnerability is particularly relevant when extended attributes are stored as AppleDouble files, where some operations fail to properly restrict client-controlled names to the designated metadata namespace.

Impact

Exploitation of this vulnerability could lead to unauthorized modification, removal, or repermissioning of files, within the constraints of the user's filesystem permissions.

Remediation

Users can upgrade to Netatalk version 4.4.3 or later, which includes the necessary patch. Alternatively, the patch for this vulnerability can be applied to a Netatalk 4.4.2 source tree. Netatalk administrators are advised to take action as soon as possible.