summaryrefslogtreecommitdiffstats
diff options
context:
space:
mode:
authorSalvatore Bonaccorso <carnil@debian.org>2020-04-07 22:36:12 +0200
committerSalvatore Bonaccorso <carnil@debian.org>2020-04-07 22:36:12 +0200
commitcfe888f14ac2cd32f1de7b38cd383c2cb63880fc (patch)
treed98398ea87972b0cd6ba27656a544f2c3440ea0e
parent4908ea463e82769c22bdedf3772b5085af4439f9 (diff)
Track inetutils under CVE-2020-10188
The respective functions in src:inetutils in utility.c correspond to very similar code in netkit. Further investigation pending so far if src:inetutils is due to as well affected by the CVE-2020-10188. The same CVE could be used probably here due to same logic implemented in the nextitem function.
-rw-r--r--data/CVE/list1
1 files changed, 1 insertions, 0 deletions
diff --git a/data/CVE/list b/data/CVE/list
index 79009b662b..96900b7e34 100644
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -3641,6 +3641,7 @@ CVE-2020-10190 (An issue was discovered in MunkiReport before 5.3.0. An authenti
CVE-2020-10189 (Zoho ManageEngine Desktop Central before 10.0.474 allows remote code e ...)
NOT-FOR-US: Zoho ManageEngine
CVE-2020-10188 (utility.c in telnetd in netkit telnet through 0.17 allows remote attac ...)
+ - inetutils <unfixed> (bug #956084)
- netkit-telnet 0.17-18woody2 (bug #953477)
- netkit-telnet-ssl 0.17.17+0.1-2woody3 (bug #953478)
NOTE: https://appgateresearch.blogspot.com/2020/02/bravestarr-fedora-31-netkit-telnetd_28.html

© 2014-2024 Faster IT GmbH | imprint | privacy policy