Debian Security Update DSA-6144-1 inetutils - security update

Thread starter LinuxBot
Start date Feb 20, 2026

LinuxBot

Member

Feb 20, 2026

#1

Ron Ben Yizhak discovered that the inetutils implementation of telnetd didn't sanitise the CREDENTIALS_DIRECTORY environment variable before passing it to the login binary. This could be exploited to bypass authentication and login as root.
https://security-tracker.debian.org/tracker/DSA-6144-1

Continue reading...

You must log in or register to reply here.

Similar threads

Debian Security Update DSA-6106-1 inetutils - security update

Replies: 0

Views: 311

Jan 22, 2026

LinuxBot

Debian Security Update DSA-6193-1 inetutils - security update

Replies: 0

Views: 124

Apr 3, 2026

LinuxBot

Ubuntu Security Update USN-7992-2: Inetutils vulnerability

Replies: 0

Views: 158

Feb 18, 2026

LinuxBot

Ubuntu Security Update USN-7992-1: Inetutils vulnerability

Replies: 0

Views: 134

Feb 3, 2026

LinuxBot

Debian Security Update DSA-6281-1 gnutls28 - security update

Replies: 0

Views: 77

May 20, 2026

LinuxBot

Share:

Facebook X Bluesky LinkedIn Reddit Pinterest Tumblr WhatsApp Email Link

Follow Linux.org

Linux.org YouTube Channel

Staff online

Brickwizard
Super Moderator

Members online

Total: 5,229 (members: 4, guests: 5,225)

Latest posts

How to Revert back my Live into regular drive?
- Latest: wizardfromoz
- 30 minutes ago
General Linux Topics
A
What Is Linux
- Latest: Ayman Ibrahim AbduAllah
- 38 minutes ago
Linux Beginner Tutorials
Another one: CIFSwitch: a non-universal Linux local root vulnerability
- Latest: beanburrito
- Today at 4:18 AM
Linux Security
D
Say Hello to Goodbye Mails: Temporary Disposable Email Accounts for Creating Accounts
- Latest: deb_user
- Today at 3:46 AM
Mail Server
Hellooooo
- Latest: MikeRocor
- Today at 2:12 AM
Member Introductions

Top