Benjamín León Dubos <[email protected]> writes: > I am submitting a patch to address the critical vulnerability identified as > CVE-2026-32746 in telnetd. > > The vulnerability is a buffer overflow in the add_slc function within the > LINEMODE SLC suboption handling. An unauthenticated remote attacker can > exploit this to achieve arbitrary code execution. > > This patch introduces proper bounds checking before writing to the > destination buffer, preventing the overflow. I have tested this against the > current 2.7 release and confirmed it remediates the issue without breaking > existing telnet functionality. > > Please find the .patch file attached. I am available to discuss any > necessary adjustments or to complete the FSF copyright assignment if > required.
Thanks for the patch, but I already commited a fix 2 weeks ago [1]. Collin [1] https://codeberg.org/inetutils/inetutils/commit/6864598a29b652a6b69a958f5cd1318aa2b258af
