CVE-2026-44071

LOW NVD

CVSS Score 3.7

Severity LOW

Published May 21, 2026

Vendor unknown

Description

Netatalk 3.1.2 through 4.4.2 is compiled without FORTIFY_SOURCE, which disables built-in buffer overflow detection at runtime, potentially allowing a remote attacker to cause a minor denial of service via memory errors that would otherwise be caught and safely terminated by runtime protection.

References

https://netatalk.io/security/CVE-2026-44071