Bug 2480487 - CVE-2026-44076 netatalk: Netatalk: Arbitrary Code Execution via shell injection in volume path [epel-all]
Summary: CVE-2026-44076 netatalk: Netatalk: Arbitrary Code Execution via shell injecti...
Keywords:
Status: ON_QA
Alias: None
Product: Fedora EPEL
Classification: Fedora
Component: netatalk
Version: epel10
Hardware: Unspecified
OS: Unspecified
medium
medium
Target Milestone: ---
Assignee: Andrew Bauer
QA Contact: Fedora Extras Quality Assurance
URL:
Whiteboard: {"flaws": ["f54b54a9-c67a-487b-a343-c...
Depends On:
Blocks: CVE-2026-44076
TreeView+ depends on / blocked
 
Reported: 2026-05-21 13:14 UTC by Keith Grant
Modified: 2026-05-23 16:46 UTC (History)
3 users (show)

Fixed In Version:
Clone Of:
Environment:
Last Closed:
Type: ---
Embargoed:

Attachments (Terms of Use)

Description Keith Grant 2026-05-21 13:14:42 UTC 
Disclaimer: Community trackers are created by Red Hat Product Security team on a best effort basis. Package maintainers are required to ascertain if the flaw indeed affects their package, before starting the update process.
Comment 1 Fedora Update System 2026-05-22 20:05:03 UTC 
FEDORA-2026-e7e7bb2417 (netatalk-4.4.3-1.fc44) has been submitted as an update to Fedora 44.
https://bodhi.fedoraproject.org/updates/FEDORA-2026-e7e7bb2417
Comment 2 Fedora Update System 2026-05-22 20:06:43 UTC 
FEDORA-2026-9fd50b2ff1 (netatalk-4.4.3-1.fc43) has been submitted as an update to Fedora 43.
https://bodhi.fedoraproject.org/updates/FEDORA-2026-9fd50b2ff1
Comment 3 Fedora Update System 2026-05-22 20:30:03 UTC 
FEDORA-EPEL-2026-b4a86bd068 (netatalk-4.4.3-1.el10_3) has been submitted as an update to Fedora EPEL 10.3.
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2026-b4a86bd068
Comment 4 Fedora Update System 2026-05-22 20:33:13 UTC 
FEDORA-EPEL-2026-cb90c89045 (netatalk-4.4.3-1.el10_2) has been submitted as an update to Fedora EPEL 10.2.
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2026-cb90c89045
Comment 5 Fedora Update System 2026-05-23 16:17:53 UTC 
FEDORA-EPEL-2026-cb90c89045 has been pushed to the Fedora EPEL 10.2 testing repository.

You can provide feedback for this update here: https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2026-cb90c89045

See also https://fedoraproject.org/wiki/QA:Updates_Testing for more information on how to test updates.
Comment 6 Fedora Update System 2026-05-23 16:28:56 UTC 
FEDORA-EPEL-2026-b4a86bd068 has been pushed to the Fedora EPEL 10.3 testing repository.

You can provide feedback for this update here: https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2026-b4a86bd068

See also https://fedoraproject.org/wiki/QA:Updates_Testing for more information on how to test updates.
Comment 7 Fedora Update System 2026-05-23 16:30:56 UTC 
FEDORA-2026-9fd50b2ff1 has been pushed to the Fedora 43 testing repository.
Soon you'll be able to install the update with the following command:
`sudo dnf upgrade --enablerepo=updates-testing --refresh --advisory=FEDORA-2026-9fd50b2ff1`
You can provide feedback for this update here: https://bodhi.fedoraproject.org/updates/FEDORA-2026-9fd50b2ff1

See also https://fedoraproject.org/wiki/QA:Updates_Testing for more information on how to test updates.
Comment 8 Fedora Update System 2026-05-23 16:46:58 UTC 
FEDORA-2026-e7e7bb2417 has been pushed to the Fedora 44 testing repository.
Soon you'll be able to install the update with the following command:
`sudo dnf upgrade --enablerepo=updates-testing --refresh --advisory=FEDORA-2026-e7e7bb2417`
You can provide feedback for this update here: https://bodhi.fedoraproject.org/updates/FEDORA-2026-e7e7bb2417

See also https://fedoraproject.org/wiki/QA:Updates_Testing for more information on how to test updates.
Note You need to log in before you can comment on or make changes to this bug.