telnetd in GNU Inetutils through 2.3, MIT krb5-appl through 1.0.3, and derivative works has a NULL pointer dereference via 0xff 0xf7 or 0xff 0xf8. In a typical installation, the telnetd application would crash but the telnet service would remain available through inetd. However, if the telnetd application has many crashes within a short time interval, the telnet service would become unavailable after inetd logs a "telnet/tcp server failing (looping), service terminated" error. NOTE: MIT krb5-appl is not supported upstream but is shipped by a few Linux distributions. The affected code was removed from the supported MIT Kerberos 5 (aka krb5) product many years ago, at version 1.8.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2022-08-30T00:00:00

Updated: 2024-08-03T11:10:32.472Z

Reserved: 2022-08-30T00:00:00

Link: CVE-2022-39028

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2022-08-30T05:15:08.117

Modified: 2024-11-21T07:17:24.353

Link: CVE-2022-39028

cve-icon Redhat

Severity : Moderate

Publid Date: 2022-08-30T00:00:00Z

Links: CVE-2022-39028 - Bugzilla