[USN-5048-1] Inetutils vulnerability

Paulo Flabiano Smorigo pfsmorigo at canonical.com
Fri Aug 20 17:23:20 UTC 2021

Ubuntu Security Notice USN-5048-1
August 19, 2021

inetutils vulnerability

A security issue affects these releases of Ubuntu and its derivatives:

- Ubuntu 20.04 LTS
- Ubuntu 18.04 LTS


Inetutils could be made to crash if it received specially crafted

Software Description:
- inetutils: GNU network utilities


It was discovered that Inetutils telnet server allows remote attackers to
execute arbitrary code via short writes or urgent data. An attacker could use
this vulnerability to cause a DoS or possibly execute arbitrary code.

Update instructions:

The problem can be corrected by updating your system to the following
package versions:

Ubuntu 20.04 LTS:
  inetutils-telnetd               2:1.9.4-11ubuntu0.1

Ubuntu 18.04 LTS:
  inetutils-telnetd               2:1.9.4-3ubuntu0.1

After a standard system update you need to restart Inetutils telnetd to make
all the necessary changes.


Package Information:
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 833 bytes
Desc: not available
URL: <https://lists.ubuntu.com/archives/ubuntu-security-announce/attachments/20210820/26674390/attachment.sig>

More information about the ubuntu-security-announce mailing list