Description
An off-by-two error in lp_write() in papd in Netatalk 2.0.0 through 4.4.2 allows an adjacent network attacker to modify limited data or cause a minor service disruption via crafted print data.
Published: 2026-05-21
Score: 3.7 Low
EPSS: n/a
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

The vulnerability is an off‑by‑two error in the papd lp_write() function of Netatalk. It permits an adjacent network attacker to modify limited data or trigger a minor service disruption by sending crafted print data. The weakness is an offset error (CWE‑193).

Affected Systems

Versions 2.0.0 through 4.4.2 of Netatalk are affected; any deployment running those releases must apply the vendor fix or upgrade to the most recent Netatalk version when a patch is available.

Risk and Exploitability

The CVSS score of 3.7 places this issue in the Low severity range. The EPSS metric is not available, and the vulnerability is not listed in the CISA KEV catalog, indicating no known public exploits. The likely attack vector is remote access to a Netatalk server that permits write operations, but the description does not specify further details; thus the overall exploit likelihood remains low, though a determined attacker could potentially trigger the off‑by‑two error to destabilize the service.

Generated by OpenCVE AI on May 21, 2026 at 11:08 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Apply the latest vendor patch or upgrade to the most recent Netatalk release
  • Restrict network exposure to Netatalk by configuring firewalls to allow access only from trusted IP ranges
  • Enable logging for papd operations and monitor for anomalous activity that might indicate exploitation attempts

Generated by OpenCVE AI on May 21, 2026 at 11:08 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Thu, 21 May 2026 09:00:00 +0000

Type Values Removed Values Added
Description In Netatalk 2.0.0 through 4.4.2, off-by-two in papd lp_write(). Fixed in 4.5.0. An off-by-two error in lp_write() in papd in Netatalk 2.0.0 through 4.4.2 allows an adjacent network attacker to modify limited data or cause a minor service disruption via crafted print data.

Thu, 21 May 2026 08:45:00 +0000

Type Values Removed Values Added
First Time appeared Netatalk
Netatalk netatalk
Vendors & Products Netatalk
Netatalk netatalk

Thu, 21 May 2026 07:45:00 +0000

Type Values Removed Values Added
Description In Netatalk 2.0.0 through 4.4.2, off-by-two in papd lp_write(). Fixed in 4.5.0.
Title Off-by-two in papd lp_write()
Weaknesses CWE-193
References
Metrics cvssV3_1

{'score': 3.7, 'vector': 'CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:L'}

Subscriptions

Netatalk Netatalk
cve-icon MITRE

Status: PUBLISHED

Assigner: securin

Published:

Updated: 2026-05-21T07:52:40.816Z

Reserved: 2026-05-05T07:25:12.313Z

Link: CVE-2026-44065

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Received

Published: 2026-05-21T08:16:22.143

Modified: 2026-05-21T09:16:28.747

Link: CVE-2026-44065

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-05-21T11:15:09Z

Weaknesses