LWN.net Logo

Not logged in

Log in now

Create an account

Subscribe to LWN

Recent Features

LWN.net Weekly Edition for May 23, 2013

An "enum" for Python 3

An unexpected perf feature

LWN.net Weekly Edition for May 16, 2013

A look at the PyPy 2.0 release

Printable page
Weekly edition Kernel Security Distributions Contact Us Search
Archives Calendar Subscribe Write for LWN LWN.net FAQ Sponsors

telnetd: code execution with root privileges

Package(s):telnetd krb5 krb5-appl heimdal CVE #(s):CVE-2011-4862
Created:December 26, 2011 Updated:February 23, 2012
Description: From the Debian advisory:

It was discovered that the Kerberos support for telnetd contains a pre-authentication buffer overflow, which may enable remote attackers who can connect to the Telnet to execute arbitrary code with root privileges.

Alerts:
CentOS CESA-2011:1852 2011-12-27
CentOS CESA-2011:1851 2011-12-27
Oracle ELSA-2011-1851 2011-12-27
Mandriva MDVSA-2011:195 2011-12-28
Red Hat RHSA-2011:1854-01 2011-12-28
Debian DSA-2375-1 2011-12-26
Debian DSA-2372-1 2011-12-25
CentOS CESA-2011:1851 2011-12-27
Oracle ELSA-2011-1852 2011-12-27
Oracle ELSA-2011-1851 2011-12-27
Scientific Linux SL-krb5-20111227 2011-12-27
Scientific Linux SL-krb5-20111227 2011-12-27
Red Hat RHSA-2011:1851-01 2011-12-27
Red Hat RHSA-2011:1852-02 2011-12-27
Debian DSA-2373-1 2011-12-25
Red Hat RHSA-2011:1853-01 2011-12-28
openSUSE openSUSE-SU-2012:0019-1 2012-01-05
SUSE SUSE-SU-2012:0010-1 2012-01-05
SUSE SUSE-SU-2012:0018-1 2012-01-05
SUSE SUSE-SU-2012:0042-1 2012-01-05
SUSE SUSE-SU-2012:0024-1 2012-01-05
Fedora FEDORA-2011-17493 2011-12-27
Fedora FEDORA-2011-17492 2011-12-27
Gentoo 201201-14 2012-01-23
Gentoo 201202-05 2012-02-22
Oracle ELSA-2012-0306 2012-03-07
(Log in to post comments)

Copyright © 2013, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds