Register | Log in

netatalk

Apple Filing Protocol service

Choose email to subscribe with

general

source: netatalk (main)
version: 4.2.0~ds-3
maintainer: Debian Netatalk team (archive) (DMD)
uploaders: Daniel Markstedt [DMD] – Jonas Smedegaard [DMD]
arch: all any
std-ver: 4.7.2
VCS: Git (Browse, QA)

versions [more versions can be listed by madison] [old versions available from snapshot.debian.org]

[pool directory]

o-o-stable: 3.1.12~ds-3
o-o-sec: 3.1.12~ds-3+deb10u5
oldstable: 3.1.12~ds-8+deb11u1
old-sec: 3.1.12~ds-8+deb11u2
testing: 4.1.2~ds-4
unstable: 4.2.0~ds-3

versioned links

3.1.12~ds-3: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
3.1.12~ds-3+deb10u5: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
3.1.12~ds-8+deb11u1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
3.1.12~ds-8+deb11u2: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
4.1.2~ds-4: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
4.2.0~ds-3: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]

binaries

a2boot
atalkd
libatalk
libatalk-dev
macipgw
netatalk (9 bugs: 0, 8, 1, 0)
netatalk-doc
netatalk-tests
netatalk-tools
papd
timelord

action needed

Debci reports failed tests high

unstable: fail (log)
The tests ran in 0:01:40
Last run: 2025-04-06T22:26:38.000Z
Previous status: unknown

testing: pass (log)
The tests ran in 0:02:11
Last run: 2025-04-13T18:07:53.000Z
Previous status: unknown

stable: neutral (log)
The tests ran in 0:00:33
Last run: 2023-05-24T11:16:15.000Z
Previous status: unknown

Created: 2025-04-06 Last update: 2025-04-15 04:29

3 security issues in buster high

There are 3 open security issues in buster.

3 important issues:

CVE-2024-38439: Netatalk 3.2.0 has an off-by-one error and resultant heap-based buffer overflow because of setting ibuf[PASSWDLEN] to '\0' in FPLoginExt in login in etc/uams/uams_pam.c.
CVE-2024-38440: Netatalk 3.2.0 has an off-by-one error, and resultant heap-based buffer overflow and segmentation violation, because of incorrectly using FPLoginExt in BN_bin2bn in etc/uams/uams_dhx_pam.c. The original issue 1097 report stated: 'The latest version of Netatalk (v3.2.0) contains a security vulnerability. This vulnerability arises due to a lack of validation for the length field after parsing user-provided data, leading to an out-of-bounds heap write of one byte (\0). Under specific configurations, this can result in reading metadata of the next heap block, potentially causing a Denial of Service (DoS) under certain heap layouts or with ASAN enabled. ... The vulnerability is located in the FPLoginExt operation of Netatalk, in the BN_bin2bn function found in /etc/uams/uams_dhx_pam.c ... if (!(bn = BN_bin2bn((unsigned char *)ibuf, KEYSIZE, NULL))) ... threads ... [#0] Id 1, Name: "afpd", stopped 0x7ffff4304e58 in ?? (), reason: SIGSEGV ... [#0] 0x7ffff4304e58 mov BYTE PTR [r14+0x8], 0x0 ... mov rdx, QWORD PTR [rsp+0x18] ... afp_login_ext(obj=<optimized out>, ibuf=0x62d000010424 "", ibuflen=0xffffffffffff0015, rbuf=<optimized out>, rbuflen=<optimized out>) ... afp_over_dsi(obj=0x5555556154c0 <obj>).'
CVE-2024-38441: Netatalk 3.2.0 has an off-by-one error and resultant heap-based buffer overflow because of setting ibuf[len] to '\0' in FPMapName in afp_mapname in etc/afpd/directory.c.

Created: 2024-06-17 Last update: 2024-06-29 19:18

1 security issue in bookworm high

There is 1 open security issue in bookworm.

1 important issue:

CVE-2022-45188: Netatalk through 3.1.13 has an afp_getappl heap-based buffer overflow resulting in code execution via a crafted .appl file. This provides remote root access on some platforms such as FreeBSD (used for TrueNAS).

Created: 2022-11-13 Last update: 2022-11-14 05:14

Depends on packages which need a new maintainer normal

The packages that netatalk depends on which need a new maintainer are:

db5.3 (#1055356)
- Depends: libdb5.3t64 libdb5.3t64
db-defaults (#1055344)
- Build-Depends: libdb-dev

Created: 2023-09-18 Last update: 2025-04-15 02:01

50 new commits since last upload, is it time to release? normal

vcswatch reports that this package seems to have new commits in its VCS but has not yet updated debian/changelog. You should consider updating the Debian changelog and uploading this new version into the archive.

Here are the relevant commit logs:

commit b6938baf679922e5204fe6291c1d8bd966c56bd0
Author: Daniel Markstedt <daniel@mindani.net>
Date:   Mon Apr 14 20:38:14 2025 +0000

    defuzz 202_privacy.patch

commit e4aeeecfedc6f74443843311ea256c97c0913316
Author: Daniel Markstedt <daniel@mindani.net>
Date:   Mon Apr 14 20:26:17 2025 +0000

    update copyright and copyright_hints

commit d5795c8c1796fe335026a2e7c9a91c3e692c85de
Author: Daniel Markstedt <daniel@mindani.net>
Date:   Mon Apr 14 20:42:57 2025 +0200

    update not-installed to reflect new default build system behavior

commit 03ee9c110719b5f19c2a7b5f2ac86c9cfe27d925
Author: Daniel Markstedt <daniel@mindani.net>
Date:   Mon Apr 14 20:23:20 2025 +0200

    drop patches obsoleted by upstream changes

commit ada0e507d8e3ceb9d69f88daa85dd9535eebe31d
Merge: 2e7dde47 12f54eaf
Author: Jonas Smedegaard <dr@jones.dk>
Date:   Mon Apr 14 12:26:44 2025 +0200

    Update upstream source from tag 'upstream/4.2.1_ds'
    
    Update to upstream version '4.2.1~ds'
    with Debian dir cd72ad170fd03325b3f33669655822cd81f2def0

commit 2e7dde47ff0b72732c11ec93c8785b6009b0ca3e
Author: Daniel Markstedt <daniel@mindani.net>
Date:   Sat Apr 12 22:09:15 2025 +0000

    in the testsuite configuration, don't attempt to force filesystem EA

commit d0db62a1a2608303798e3a7ad3e342b4df583990
Author: Jonas Smedegaard <dr@jones.dk>
Date:   Sat Apr 12 12:39:56 2025 +0200

    update changelog

commit 5732549f0c25eddc001d0e269fde64746b77547e
Author: Daniel Markstedt <daniel@mindani.net>
Date:   Sat Apr 12 12:31:35 2025 +0200

    improve and optimize the latest changelog

commit 8e42c6267a900c8fb9729821e7192e7b90bf4afb
Author: Jonas Smedegaard <dr@jones.dk>
Date:   Sat Apr 12 11:02:19 2025 +0200

    update changelog

commit eb4b3d35ea4fd2ebfb495f93bab57a13445d057f
Author: Daniel Markstedt <daniel@mindani.net>
Date:   Fri Apr 11 23:57:44 2025 +0200

    drop two patches that were ineffectual for addressing test failure

commit 334d8eeb9c83f5c04b790077294fd7106f85f0ce
Author: Daniel Markstedt <daniel@mindani.net>
Date:   Fri Apr 11 07:42:57 2025 +0000

    use stronger test user password in testsuite

commit 19ea81a5334e284e021c0eb92fd25ec5ff10de4e
Author: Daniel Markstedt <daniel@mindani.net>
Date:   Fri Apr 11 07:12:16 2025 +0000

    add patch for standardizing error code validation in testsuite

commit 0aec2829ce69b523854dd38257076f4e798871a5
Author: Daniel Markstedt <daniel@mindani.net>
Date:   Thu Apr 10 06:56:16 2025 +0200

    create baseline salsa-ci.yml file

commit b15f2e555c4cc7c04f81c51dba82b65f08e535e1
Author: Daniel Markstedt <daniel@mindani.net>
Date:   Wed Apr 9 11:01:25 2025 +0000

    temporarily enable highest level of logging verbosity

commit 77bbbaf8730b3d27fc2a0fdfa3b218195783be49
Author: Daniel Markstedt <daniel@mindani.net>
Date:   Wed Apr 9 05:58:18 2025 +0000

    explicitly set extended attributes and volume name options for testsuite setup

commit 99446278e4a4224cec5b06ee07094ca3eb30386c
Author: Daniel Markstedt <daniel@mindani.net>
Date:   Wed Apr 9 04:42:39 2025 +0000

    remove obsoleted netatalk option from testsuite setup

commit fb74d407997e537458fb7cc61e415dd33f7bd60b
Author: Jonas Smedegaard <dr@jones.dk>
Date:   Mon Apr 7 21:56:30 2025 +0200

    update changelog

commit c0ffeb2723df30c1da2162b2c45b9f81dd7d91de
Author: Daniel Markstedt <daniel@mindani.net>
Date:   Mon Apr 7 19:43:43 2025 +0000

    add patch for error logging in EXPECT_FAIL macro in testsuite

commit 752ccf5aaaeeceb881eb43dbd0104c75ef0892e2
Author: Daniel Markstedt <daniel@mindani.net>
Date:   Mon Apr 7 19:40:13 2025 +0000

    add patch for FPGetExtAttr return value in testsuite

commit 01e42089bd86b380a483e618940f92dde569906b
Author: Daniel Markstedt <daniel@mindani.net>
Date:   Sun Apr 6 18:56:53 2025 +0200

    remove superfluous label on an author in copyright

commit eb0230aadbf9bd88274b77dd16c80700c312490e
Author: Jonas Smedegaard <dr@jones.dk>
Date:   Sun Apr 6 12:59:14 2025 +0200

    update changelog and copyright hints

commit 0840bb1383fd512189dd558558dc20a0f3576b67
Author: Jonas Smedegaard <dr@jones.dk>
Date:   Sun Apr 6 12:58:38 2025 +0200

    update copyright info: update coverage

commit 818abe803dda99709b4622c36a0efc53260d7830
Author: Daniel Markstedt <daniel@mindani.net>
Date:   Thu Apr 3 18:56:40 2025 +0200

    ignore CUPS pap backend configuration file

commit 07105d6cd96a259d0327145a25911b5e267c20ce
Author: Daniel Markstedt <daniel@mindani.net>
Date:   Thu Apr 3 18:55:42 2025 +0200

    update ignore list with new readme names

commit dc3bd838af20b892e3362cd1c53f9d5dade0a788
Author: Daniel Markstedt <daniel@mindani.net>
Date:   Thu Apr 3 08:20:10 2025 +0200

    CONTRIBUTORS is now markdown converted to txt

commit a22ca9783baded0a2e2e15f298bdd8b4de976242
Author: Daniel Markstedt <daniel@mindani.net>
Date:   Thu Apr 3 06:18:54 2025 +0000

    temporary patch for sequence of generating unicode lookup tables

commit 713d120302c8dc81a4c087d4fbe23f0968f7b857
Author: Daniel Markstedt <daniel@mindani.net>
Date:   Thu Apr 3 06:02:30 2025 +0000

    refresh README privacy patch

commit 27ec90f8eb6450ce6e73c499573711a246708376
Author: Daniel Markstedt <daniel@mindani.net>
Date:   Thu Apr 3 08:12:55 2025 +0200

    need to tell meson to explicitly build unicode lookup tables

commit 83779f7f8edcca0ede8ec239937d6f63326b2cbc
Author: Daniel Markstedt <daniel@mindani.net>
Date:   Thu Apr 3 08:10:45 2025 +0200

    new meson syntax for building docs

commit 6d96a985c085e262efbc2323a17e4e48c11d4d6d
Author: Daniel Markstedt <daniel@mindani.net>
Date:   Thu Apr 3 07:55:08 2025 +0200

    iniparser is now a mandatory build and runtime dependency

commit 00bab238726caf4c4648e1cf61db98eacd21429f
Author: Daniel Markstedt <daniel@mindani.net>
Date:   Thu Apr 3 07:53:11 2025 +0200

    docs are now built with cmark-gfm, removing docbook and xslt dependencies

commit e0fa8f8807c3d9ed2fd683084e126812e65073d5
Author: Daniel Markstedt <daniel@mindani.net>
Date:   Thu Apr 3 07:51:40 2025 +0200

    new test binary fce_listen

commit 9264a515d32bdfb7f50b029aae0e3d375c16e505
Author: Daniel Markstedt <daniel@mindani.net>
Date:   Thu Apr 3 07:49:20 2025 +0200

    netatalk test binaries now depend on libatalk

commit 228ef7e42006399143b7dc706ed48e142c2e1c27
Author: Daniel Markstedt <daniel@mindani.net>
Date:   Wed Apr 2 08:23:07 2025 +0200

    update copyright

commit 4350a54e6639c6e540b3432295160b58c8d54137
Author: Daniel Markstedt <daniel@mindani.net>
Date:   Wed Apr 2 05:40:20 2025 +0000

    update copyright hints

commit b59857704d7812b8d5e886fa399c742298564ada
Merge: a33b0a01 5098dec3
Author: Jonas Smedegaard <dr@jones.dk>
Date:   Tue Apr 1 21:55:42 2025 +0200

    Update upstream source from tag 'upstream/4.2.0_ds'
    
    Update to upstream version '4.2.0~ds'
    with Debian dir 1f7646f3198a40113279dc320d40c939176c36e9

commit a33b0a01c8d935b7522182eba1e9b616327b6430
Author: Jonas Smedegaard <dr@jones.dk>
Date:   Sat Mar 8 12:29:59 2025 +0100

    update changelog

commit 37426c6a9507dbd2049f5ff23a71cf076296d04d
Author: Daniel Markstedt <daniel@mindani.net>
Date:   Sat Mar 8 10:26:21 2025 +0000

    declare compliance with Debian Policy 4.7.2

commit a6df12502e759dd1cb49d35afceb9266d721ca3a
Author: Daniel Markstedt <daniel@mindani.net>
Date:   Sat Mar 8 10:25:25 2025 +0000

    restore dependency on libtracker-sparql-3.0-dev

commit ac0d09b508b972a251fefdeef6d2a84ed86c46e9
Author: Jonas Smedegaard <dr@jones.dk>
Date:   Tue Feb 25 07:24:03 2025 +0100

    update changelog

commit 9e4ae89fa4f1e8377cc86b870d2a7fc767c3c52b
Author: Daniel Markstedt <daniel@mindani.net>
Date:   Tue Feb 25 06:42:27 2025 +0100

    update smoke test to accommodate localsearch daemon

commit 83cce66efd237a07ea4c9ceb7ecfee935e7e2fea
Author: Jonas Smedegaard <dr@jones.dk>
Date:   Mon Feb 24 22:54:51 2025 +0100

    update changelog

commit cba58fcf24613006475e38c4036628f282b73f29
Author: Jonas Smedegaard <dr@jones.dk>
Date:   Mon Feb 24 22:54:47 2025 +0100

    declare compliance with Debian Policy 4.7.1

commit a1b50669f8eb75a8b9e1cb823e2784a5c67b93cd
Author: Jonas Smedegaard <dr@jones.dk>
Date:   Mon Feb 24 22:37:39 2025 +0100

    build-depend on libtinysparql-dev localsearch (not libtracker-sparql-3.0-dev tracker); depend on localsearch (not tracker tracker-miner-fs); closes: bug#1098776, thanks to Santiago Vila

commit 19a67dcb7d4367ec425d13768895be21772d20ac
Author: Jonas Smedegaard <dr@jones.dk>
Date:   Thu Feb 13 07:11:54 2025 +0100

    update changelog and copyright hints

commit fe35e91119c997580a1f1c5f93103867ab3dfe83
Author: Jonas Smedegaard <dr@jones.dk>
Date:   Thu Feb 13 07:10:32 2025 +0100

    update copyright info: update coverage

commit 07fa249350d8e8f084a20125bae929ddc469824c
Merge: 178a3ca5 c4809f3e
Author: Jonas Smedegaard <dr@jones.dk>
Date:   Thu Feb 13 07:06:00 2025 +0100

    Update upstream source from tag 'upstream/4.1.2_ds'
    
    Update to upstream version '4.1.2~ds'
    with Debian dir 28f9f9a1f23fc22aea51f6a3dc9323808c7b7b99

commit 178a3ca57d53e2fd0ef8dc6db5febe4c88ecc1f8
Author: Jonas Smedegaard <dr@jones.dk>
Date:   Fri Jan 24 19:38:55 2025 +0100

    update changelog

commit 951aae21d8fbb8d45def89654a13ad8d195844d2
Author: Daniel Markstedt <daniel@mindani.net>
Date:   Fri Jan 24 18:30:07 2025 +0100

    remove patch obsoleted by upstream changes

commit 4b13882ef7cc7cd3926e71f67c9f6afa360832d5
Author: Daniel Markstedt <daniel@mindani.net>
Date:   Fri Jan 24 18:29:06 2025 +0100

    update copyright year

Created: 2025-04-12 Last update: 2025-04-14 23:01

testing migrations

excuses:
- Migration status for netatalk (4.1.2~ds-4 to 4.2.0~ds-3): BLOCKED: Rejected/violates migration policy/introduces a regression
- Issues preventing migration:
- ∙ ∙ autopkgtest for netatalk/4.2.0~ds-3: amd64: Regression or new test ♻ (reference ♻), arm64: Pass, armel: Regression or new test ♻ (reference ♻), armhf: Regression or new test ♻ (reference ♻), i386: Regression or new test ♻ (reference ♻), ppc64el: Regression or new test ♻ (reference ♻), riscv64: Pass, s390x: Pass
- ∙ ∙ Too young, only 3 of 5 days old
- Additional info:
- ∙ ∙ Piuparts tested OK - https://piuparts.debian.org/sid/source/n/netatalk.html
- ∙ ∙ Reproducible on amd64 - info ♻
- ∙ ∙ Reproducible on arm64 - info ♻
- ∙ ∙ Waiting for reproducibility test results on armhf - info ♻
- ∙ ∙ Reproducible on i386 - info ♻
- Not considered

news

[2025-04-12] Accepted netatalk 4.2.0~ds-3 (source) into unstable (Jonas Smedegaard)
[2025-04-12] Accepted netatalk 4.2.0~ds-2+exp (source) into experimental (Jonas Smedegaard)
[2025-04-08] Accepted netatalk 4.2.0~ds-2 (source) into unstable (Jonas Smedegaard)
[2025-04-06] Accepted netatalk 4.2.0~ds-1 (source) into unstable (Jonas Smedegaard)
[2025-03-10] netatalk 4.1.2~ds-4 MIGRATED to testing (Debian testing watch)
[2025-03-08] Accepted netatalk 4.1.2~ds-4 (source) into unstable (Jonas Smedegaard)
[2025-02-25] Accepted netatalk 4.1.2~ds-3 (source) into unstable (Jonas Smedegaard)
[2025-02-24] Accepted netatalk 4.1.2~ds-2 (source) into unstable (Jonas Smedegaard)
[2025-02-15] netatalk 4.1.2~ds-1 MIGRATED to testing (Debian testing watch)
[2025-02-13] Accepted netatalk 4.1.2~ds-1 (source) into unstable (Jonas Smedegaard)
[2025-01-28] netatalk 4.1.1~ds-1 MIGRATED to testing (Debian testing watch)
[2025-01-24] Accepted netatalk 4.1.1~ds-1 (source) into unstable (Jonas Smedegaard)
[2025-01-16] netatalk 4.1.0~ds-1 MIGRATED to testing (Debian testing watch)
[2025-01-13] Accepted netatalk 4.1.0~ds-1 (source) into unstable (Jonas Smedegaard)
[2024-12-20] netatalk 4.0.8~ds-1 MIGRATED to testing (Debian testing watch)
[2024-12-18] Accepted netatalk 4.0.8~ds-1 (source) into unstable (Jonas Smedegaard)
[2024-12-08] netatalk 4.0.7~ds-2 MIGRATED to testing (Debian testing watch)
[2024-12-06] Accepted netatalk 4.0.7~ds-2 (source) into unstable (Jonas Smedegaard)
[2024-11-30] Accepted netatalk 4.0.7~ds-1 (source) into unstable (Jonas Smedegaard)
[2024-11-27] Accepted netatalk 3.1.12~ds-8+deb11u2 (source) into oldstable-security (Thorsten Alteholz)
[2024-11-19] netatalk 4.0.6~ds-1 MIGRATED to testing (Debian testing watch)
[2024-11-16] Accepted netatalk 4.0.6~ds-1 (source) into unstable (Jonas Smedegaard)
[2024-11-12] netatalk 4.0.5~ds-1 MIGRATED to testing (Debian testing watch)
[2024-11-10] Accepted netatalk 4.0.5~ds-1 (source) into unstable (Jonas Smedegaard)
[2024-11-08] Accepted netatalk 4.0.4~ds-2 (source) into unstable (Jonas Smedegaard)
[2024-11-07] Accepted netatalk 4.0.4~ds-1 (source) into unstable (Jonas Smedegaard)
[2024-11-02] netatalk 4.0.3~ds-2 MIGRATED to testing (Debian testing watch)
[2024-10-30] Accepted netatalk 4.0.3~ds-2 (source) into unstable (Jonas Smedegaard)
[2024-10-30] Accepted netatalk 4.0.3~ds-1 (source amd64 all) into experimental (Debian FTP Masters) (signed by: Jonas Smedegaard)
[2024-10-28] Accepted netatalk 4.0.2~ds-2 (source) into unstable (Jonas Smedegaard)

1
2

bugs [bug history graph]

all: 9
RC: 0
I&N: 8
M&W: 1
F&P: 0
patch: 0

links

homepage
lintian
buildd: logs, reproducibility, cross
popcon
browse source code
edit tags
other distros
security tracker
screenshots
debian patches
debci

ubuntu

[Information about Ubuntu for Debian Developers]

version: 4.1.2~ds-4
40 bugs

Debian Package Tracker — Copyright 2013-2025 The Distro Tracker Developers

Report problems to the tracker.debian.org pseudo-package in the Debian BTS.

Documentation — Bugs — Git Repository — Contributing