Search for packages
Package details: pkg:deb/debian/inetutils@2:1.4.2%2B20040207-4
purl pkg:deb/debian/inetutils@2:1.4.2%2B20040207-4
Next non-vulnerable version 2:2.0-1+deb11u2
Latest non-vulnerable version 2:2.4-2+deb12u1
Risk 10.0
Vulnerabilities affecting this package (8)
Vulnerability Summary Fixed by
VCID-7avt-gvth-aaan
Aliases:
CVE-2011-4862
Buffer overflow in libtelnet/encrypt.c in telnetd in FreeBSD 7.3 through 9.0, MIT Kerberos Version 5 Applications (aka krb5-appl) 1.0.2 and earlier, Heimdal 1.5.1 and earlier, GNU inetutils, and possibly other products allows remote attackers to execute arbitrary code via a long encryption key, as exploited in the wild in December 2011.
2:1.9-2
Affected by 6 other vulnerabilities.
VCID-9gr8-b5j3-aaae
Aliases:
CVE-2023-40303
GNU inetutils through 2.4 may allow privilege escalation because of unchecked return values of set*id() family functions in ftpd, rcp, rlogin, rsh, rshd, and uucpd. This is, for example, relevant if the setuid system call fails when a process is trying to drop privileges before letting an ordinary user control the activities of the process.
2:2.0-1+deb11u2
Affected by 0 other vulnerabilities.
2:2.4-2+deb12u1
Affected by 0 other vulnerabilities.
VCID-b1ej-usms-aaar
Aliases:
CVE-2014-3634
rsyslog before 7.6.6 and 8.x before 8.4.1 and sysklogd 1.5 and earlier allows remote attackers to cause a denial of service (crash), possibly execute arbitrary code, or have other unspecified impact via a crafted priority (PRI) value that triggers an out-of-bounds array access.
2:1.9.2.39.3a460-3
Affected by 5 other vulnerabilities.
VCID-kppx-spcv-aaar
Aliases:
CVE-2022-39028
telnetd in GNU Inetutils through 2.3, MIT krb5-appl through 1.0.3, and derivative works has a NULL pointer dereference via 0xff 0xf7 or 0xff 0xf8. In a typical installation, the telnetd application would crash but the telnet service would remain available through inetd. However, if the telnetd application has many crashes within a short time interval, the telnet service would become unavailable after inetd logs a "telnet/tcp server failing (looping), service terminated" error. NOTE: MIT krb5-appl is not supported upstream but is shipped by a few Linux distributions. The affected code was removed from the supported MIT Kerberos 5 (aka krb5) product many years ago, at version 1.8.
2:2.0-1+deb11u1
Affected by 1 other vulnerability.
2:2.0-1+deb11u2
Affected by 0 other vulnerabilities.
VCID-p1vr-dybe-aaaj
Aliases:
CVE-2010-2529
Unspecified vulnerability in ping.c in iputils 20020927, 20070202, 20071127, and 20100214 on Mandriva Linux allows remote attackers to cause a denial of service (hang) via a crafted echo response.
2:1.9-2
Affected by 6 other vulnerabilities.
VCID-r2tt-vnc4-aaab
Aliases:
CVE-2021-40491
The ftp client in GNU Inetutils before 2.2 does not validate addresses returned by PASV/LSPV responses to make sure they match the server address. This is similar to CVE-2020-8284 for curl.
2:2.0-1+deb11u1
Affected by 1 other vulnerability.
2:2.0-1+deb11u2
Affected by 0 other vulnerabilities.
VCID-vkw6-hvk2-aaar
Aliases:
CVE-2020-10188
utility.c in telnetd in netkit telnet through 0.17 allows remote attackers to execute arbitrary code via short writes or urgent data, because of a buffer overflow involving the netclear and nextitem functions.
2:1.9.4-7+deb10u1
Affected by 5 other vulnerabilities.
2:2.0-1+deb11u2
Affected by 0 other vulnerabilities.
VCID-xjh5-6crv-aaak
Aliases:
CVE-2019-0053
Insufficient validation of environment variables in the telnet client supplied in Junos OS can lead to stack-based buffer overflows, which can be exploited to bypass veriexec restrictions on Junos OS. A stack-based overflow is present in the handling of environment variables when connecting via the telnet client to remote telnet servers. This issue only affects the telnet client — accessible from the CLI or shell — in Junos OS. Inbound telnet services are not affected by this issue. This issue affects: Juniper Networks Junos OS: 12.3 versions prior to 12.3R12-S13; 12.3X48 versions prior to 12.3X48-D80; 14.1X53 versions prior to 14.1X53-D130, 14.1X53-D49; 15.1 versions prior to 15.1F6-S12, 15.1R7-S4; 15.1X49 versions prior to 15.1X49-D170; 15.1X53 versions prior to 15.1X53-D237, 15.1X53-D496, 15.1X53-D591, 15.1X53-D69; 16.1 versions prior to 16.1R3-S11, 16.1R7-S4; 16.2 versions prior to 16.2R2-S9; 17.1 versions prior to 17.1R3; 17.2 versions prior to 17.2R1-S8, 17.2R2-S7, 17.2R3-S1; 17.3 versions prior to 17.3R3-S4; 17.4 versions prior to 17.4R1-S6, 17.4R2-S3, 17.4R3; 18.1 versions prior to 18.1R2-S4, 18.1R3-S3; 18.2 versions prior to 18.2R1-S5, 18.2R2-S2, 18.2R3; 18.2X75 versions prior to 18.2X75-D40; 18.3 versions prior to 18.3R1-S3, 18.3R2; 18.4 versions prior to 18.4R1-S2, 18.4R2.
2:2.0-1+deb11u1
Affected by 1 other vulnerability.
2:2.0-1+deb11u2
Affected by 0 other vulnerabilities.
Vulnerabilities fixed by this package (0)
Vulnerability Summary Aliases
This package is not known to fix vulnerabilities.

Date Actor Action Vulnerability Source VulnerableCode Version
2025-06-21T19:16:57.553625+00:00 Debian Oval Importer Affected by VCID-vkw6-hvk2-aaar https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 36.1.3
2025-06-21T16:11:44.416283+00:00 Debian Oval Importer Affected by VCID-kppx-spcv-aaar https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.1.3
2025-06-21T16:05:04.495680+00:00 Debian Oval Importer Affected by VCID-b1ej-usms-aaar https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.1.3
2025-06-21T15:02:35.294602+00:00 Debian Oval Importer Affected by VCID-vkw6-hvk2-aaar https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.1.3
2025-06-21T14:53:56.296711+00:00 Debian Oval Importer Affected by VCID-xjh5-6crv-aaak https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.1.3
2025-06-21T14:37:12.721654+00:00 Debian Oval Importer Affected by VCID-9gr8-b5j3-aaae https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.1.3
2025-06-21T13:21:15.289151+00:00 Debian Oval Importer Affected by VCID-7avt-gvth-aaan https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.1.3
2025-06-21T11:59:10.952335+00:00 Debian Oval Importer Affected by VCID-p1vr-dybe-aaaj https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.1.3
2025-06-21T11:40:26.482475+00:00 Debian Oval Importer Affected by VCID-r2tt-vnc4-aaab https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.1.3
2025-06-21T06:09:54.936525+00:00 Debian Oval Importer Affected by VCID-xjh5-6crv-aaak None 36.1.3
2025-06-21T04:42:47.187996+00:00 Debian Oval Importer Affected by VCID-r2tt-vnc4-aaab None 36.1.3
2025-06-21T02:17:43.406975+00:00 Debian Oval Importer Affected by VCID-kppx-spcv-aaar None 36.1.3
2025-06-20T22:01:48.523108+00:00 Debian Oval Importer Affected by VCID-7avt-gvth-aaan None 36.1.3
2025-06-20T21:49:30.689783+00:00 Debian Oval Importer Affected by VCID-vkw6-hvk2-aaar None 36.1.3
2025-06-20T21:00:56.271111+00:00 Debian Oval Importer Affected by VCID-b1ej-usms-aaar None 36.1.3
2025-06-20T19:35:14.678586+00:00 Debian Oval Importer Affected by VCID-p1vr-dybe-aaaj None 36.1.3
2025-06-08T12:52:28.796529+00:00 Debian Oval Importer Affected by VCID-p1vr-dybe-aaaj https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 36.1.0
2025-06-08T12:45:18.632893+00:00 Debian Oval Importer Affected by VCID-xjh5-6crv-aaak https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 36.1.0
2025-06-08T12:15:39.486125+00:00 Debian Oval Importer Affected by VCID-7avt-gvth-aaan https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 36.1.0
2025-06-08T11:45:44.677372+00:00 Debian Oval Importer Affected by VCID-vkw6-hvk2-aaar https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 36.1.0
2025-06-08T09:00:22.049312+00:00 Debian Oval Importer Affected by VCID-kppx-spcv-aaar https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.1.0
2025-06-08T08:57:56.002334+00:00 Debian Oval Importer Affected by VCID-b1ej-usms-aaar https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.1.0
2025-06-08T07:55:57.175675+00:00 Debian Oval Importer Affected by VCID-vkw6-hvk2-aaar https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.1.0
2025-06-08T07:47:17.602796+00:00 Debian Oval Importer Affected by VCID-xjh5-6crv-aaak https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.1.0
2025-06-08T07:30:19.917037+00:00 Debian Oval Importer Affected by VCID-9gr8-b5j3-aaae https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.1.0
2025-06-08T06:15:48.655136+00:00 Debian Oval Importer Affected by VCID-7avt-gvth-aaan https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.1.0
2025-06-08T05:09:12.240907+00:00 Debian Oval Importer Affected by VCID-p1vr-dybe-aaaj https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.1.0
2025-06-08T04:57:14.336089+00:00 Debian Oval Importer Affected by VCID-r2tt-vnc4-aaab https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.1.0
2025-06-07T23:48:50.089887+00:00 Debian Oval Importer Affected by VCID-xjh5-6crv-aaak None 36.1.0
2025-06-07T22:19:43.150779+00:00 Debian Oval Importer Affected by VCID-r2tt-vnc4-aaab None 36.1.0
2025-06-07T19:41:29.783400+00:00 Debian Oval Importer Affected by VCID-kppx-spcv-aaar None 36.1.0
2025-06-07T15:25:26.966047+00:00 Debian Oval Importer Affected by VCID-7avt-gvth-aaan None 36.1.0
2025-06-07T15:12:37.976128+00:00 Debian Oval Importer Affected by VCID-vkw6-hvk2-aaar None 36.1.0
2025-06-07T14:28:03.455368+00:00 Debian Oval Importer Affected by VCID-b1ej-usms-aaar None 36.1.0
2025-06-07T13:30:26.915752+00:00 Debian Oval Importer Affected by VCID-p1vr-dybe-aaaj None 36.1.0
2025-04-12T21:52:45.819892+00:00 Debian Oval Importer Affected by VCID-b1ej-usms-aaar https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 36.0.0
2025-04-12T21:51:48.760380+00:00 Debian Oval Importer Affected by VCID-9gr8-b5j3-aaae https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 36.0.0
2025-04-12T21:28:50.896946+00:00 Debian Oval Importer Affected by VCID-kppx-spcv-aaar https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 36.0.0
2025-04-12T20:53:10.575961+00:00 Debian Oval Importer Affected by VCID-r2tt-vnc4-aaab https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 36.0.0
2025-04-12T18:39:34.976436+00:00 Debian Oval Importer Affected by VCID-p1vr-dybe-aaaj https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 36.0.0
2025-04-12T18:32:12.471435+00:00 Debian Oval Importer Affected by VCID-xjh5-6crv-aaak https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 36.0.0
2025-04-12T18:01:24.460565+00:00 Debian Oval Importer Affected by VCID-7avt-gvth-aaan https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 36.0.0
2025-04-12T17:30:37.512111+00:00 Debian Oval Importer Affected by VCID-vkw6-hvk2-aaar https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 36.0.0
2025-04-08T07:32:01.459337+00:00 Debian Oval Importer Affected by VCID-kppx-spcv-aaar https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.0.0
2025-04-08T07:29:31.470945+00:00 Debian Oval Importer Affected by VCID-b1ej-usms-aaar https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.0.0
2025-04-08T06:28:23.847202+00:00 Debian Oval Importer Affected by VCID-vkw6-hvk2-aaar https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.0.0
2025-04-08T06:19:50.265318+00:00 Debian Oval Importer Affected by VCID-xjh5-6crv-aaak https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.0.0
2025-04-08T06:03:08.161648+00:00 Debian Oval Importer Affected by VCID-9gr8-b5j3-aaae https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.0.0
2025-04-08T04:48:01.523318+00:00 Debian Oval Importer Affected by VCID-7avt-gvth-aaan https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.0.0
2025-04-08T03:40:09.311656+00:00 Debian Oval Importer Affected by VCID-p1vr-dybe-aaaj https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.0.0
2025-04-08T03:28:17.263944+00:00 Debian Oval Importer Affected by VCID-r2tt-vnc4-aaab https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.0.0
2025-04-07T22:20:56.237199+00:00 Debian Oval Importer Affected by VCID-xjh5-6crv-aaak None 36.0.0
2025-04-07T20:51:14.677280+00:00 Debian Oval Importer Affected by VCID-r2tt-vnc4-aaab None 36.0.0
2025-04-07T18:19:16.195403+00:00 Debian Oval Importer Affected by VCID-kppx-spcv-aaar None 36.0.0
2025-04-07T13:56:42.367763+00:00 Debian Oval Importer Affected by VCID-7avt-gvth-aaan None 36.0.0
2025-04-07T13:44:20.421168+00:00 Debian Oval Importer Affected by VCID-vkw6-hvk2-aaar None 36.0.0
2025-04-07T13:00:21.907957+00:00 Debian Oval Importer Affected by VCID-b1ej-usms-aaar None 36.0.0
2025-04-07T12:05:53.696416+00:00 Debian Oval Importer Affected by VCID-p1vr-dybe-aaaj None 36.0.0
2024-11-28T16:09:06.255216+00:00 Debian Oval Importer Affected by VCID-7avt-gvth-aaan https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 35.0.0
2024-11-27T18:51:18.743264+00:00 Debian Oval Importer Affected by VCID-p1vr-dybe-aaaj https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 35.0.0
2024-10-14T02:16:28.145956+00:00 Debian Oval Importer Affected by VCID-7avt-gvth-aaan https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 34.0.2
2024-10-13T11:35:32.921930+00:00 Debian Oval Importer Affected by VCID-p1vr-dybe-aaaj https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 34.0.2
2024-09-21T05:04:40.016233+00:00 Debian Oval Importer Affected by VCID-7avt-gvth-aaan https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 34.0.1
2024-09-20T22:58:50.084126+00:00 Debian Oval Importer Affected by VCID-p1vr-dybe-aaaj https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 34.0.1