Ubuntu Security Update USN-8387-1: Inetutils vulnerabilities

LinuxBot

LinuxBot

Member
Joined
Apr 25, 2017
Messages
5,903
Reaction score
75
Credits
-1,257
It was discovered that the Inetutils telnet daemon incorrectly handled the CREDENTIALS_DIRECTORY environment variable. An attacker could possibly use this issue to escalate privileges. (CVE-2026-28372) It was discovered that the Inetutils telnet daemon did not properly validate buffer bounds when processing LINEMODE SLC suboptions. An attacker could possibly use this issue to cause a denial of service or execute arbitrary code. (CVE-2026-32746) It was discovered that the Inetutils telnet client incorrectly handled the NEW_ENVIRON SEND USERVAR option. An attacker could possibly use this issue to read arbitrary environment variables. (CVE-2026-32772)

Continue reading...
 
You must log in or register to reply here.

Similar threads

LinuxBot
Debian Security Update DSA-6193-1 inetutils - security update
Replies
0
Views
136
LinuxBot
LinuxBot
LinuxBot
Ubuntu Security Update USN-7992-2: Inetutils vulnerability
Replies
0
Views
170
LinuxBot
LinuxBot
LinuxBot
Debian Security Update DSA-6144-1 inetutils - security update
Replies
0
Views
160
LinuxBot
LinuxBot
LinuxBot
Ubuntu Security Update USN-7992-1: Inetutils vulnerability
Replies
0
Views
143
LinuxBot
LinuxBot
LinuxBot
Ubuntu Security Update USN-7781-1: Inetutils vulnerabilities
Replies
0
Views
248
LinuxBot
LinuxBot


Follow Linux.org

Staff online

Members online

Total: 3,069 (members: 5, guests: 3,064)

Latest posts

Top