CVE-2005-0469

Published: 2 May 2005

Buffer overflow in the slc_add_reply function in various BSD-based Telnet clients, when handling LINEMODE suboptions, allows remote attackers to execute arbitrary code via a reply with a large number of Set Local Character (SLC) commands.

Priority

Status

Package	Release	Status
krb5 Launchpad, Ubuntu, Debian	dapper	Released (1.4.3-5ubuntu0.6)
	edgy	Released (1.4.3-9ubuntu1.5)
	feisty	Released (1.4.4-5ubuntu3.3)
	upstream	Needs triage
krb4 Launchpad, Ubuntu, Debian	dapper	Released (1.2.2-11.3ubuntu4)
	edgy	Released (1.2.2-11.3ubuntu4)
	feisty	Does not exist
	upstream	Needs triage
netkit-telnet-ssl Launchpad, Ubuntu, Debian	dapper	Released (0.17.24+0.1-9)
	edgy	Released (0.17.24+0.1-9)
	feisty	Released (0.17.24+0.1-9)
	upstream	Needs triage
heimdal Launchpad, Ubuntu, Debian	dapper	Released (0.7.1-1ubuntu3)
	edgy	Released (0.7.1-1ubuntu3)
	feisty	Released (0.7.1-1ubuntu3)
	upstream	Needs triage
netkit-telnet Launchpad, Ubuntu, Debian	dapper	Released (0.17-32)
	edgy	Released (0.17-32)
	feisty	Released (0.17-32)
	upstream	Needs triage

References

Join the discussion

Canonical is offering Expanded Security Maintenance

Canonical is offering Ubuntu Expanded Security Maintenance (ESM) for security fixes and essential packages.

Find out more about ESM ›