CVE-2022-39028: Null Pointer Dereference
First published: Tue Aug 30 2022(Updated: )
telnetd in GNU Inetutils through 2.3, MIT krb5-appl through 1.0.3, and derivative works has a NULL pointer dereference via 0xff 0xf7 or 0xff 0xf8. In a typical installation, the telnetd application would crash but the telnet service would remain available through inetd. However, if the telnetd application has many crashes within a short time interval, the telnet service would become unavailable after inetd logs a "telnet/tcp server failing (looping), service terminated" error. NOTE: MIT krb5-appl is not supported upstream but is shipped by a few Linux distributions. The affected code was removed from the supported MIT Kerberos 5 (aka krb5) product many years ago, at version 1.8.
Credit: cve@mitre.org cve@mitre.org cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| debian/inetutils | <=2:1.9.4-7+deb10u1 | 2:1.9.4-7+deb10u2 2:2.0-1+deb11u1 2:2.4-2 2:2.4-3 |
| ubuntu/inetutils | <2:1.9.4-11ubuntu0.2 | 2:1.9.4-11ubuntu0.2 |
| ubuntu/inetutils | <2:2.2-2ubuntu0.1 | 2:2.2-2ubuntu0.1 |
| ubuntu/inetutils | <2:2.3-5 | 2:2.3-5 |
| GNU inetutils | <=2.3 | |
| MIT Kerberos 5 | <=1.0.3 | |
| Debian Debian Linux | =10.0 | |
| Netkit-telnet Project Netkit-telnet | <=0.17 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- https://git.hadrons.org/cgit/debian/pkgs/inetutils.git/commit/?id=113da8021710d871c7dd72d2a4d5615d42d64289
- https://lists.gnu.org/archive/html/bug-inetutils/2022-08/msg00002.html
- https://pierrekim.github.io/blog/2022-08-24-2-byte-dos-freebsd-netbsd-telnetd-netkit-telnetd-inetutils-telnetd-kerberos-telnetd.html
- https://lists.debian.org/debian-lts-announce/2022/11/msg00033.html
- https://launchpad.net/bugs/cve/CVE-2022-39028
- https://security-tracker.debian.org/tracker/CVE-2022-39028
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-39028
- https://ubuntu.com/security/notices/USN-6304-1
- https://nvd.nist.gov/vuln/detail/CVE-2022-39028
- https://ubuntu.com/security/CVE-2022-39028
Frequently Asked Questions
What is CVE-2022-39028?
CVE-2022-39028 is a vulnerability in telnetd in GNU Inetutils through 2.3, MIT krb5-appl through 1.0.3, and derivative works.
What is the severity of CVE-2022-39028?
The severity of CVE-2022-39028 is high with a CVSS score of 7.5.
How does CVE-2022-39028 affect GNU Inetutils?
CVE-2022-39028 affects GNU Inetutils through version 2.3.
How does CVE-2022-39028 affect MIT krb5-appl?
CVE-2022-39028 affects MIT krb5-appl through version 1.0.3.
How can I fix CVE-2022-39028?
To fix CVE-2022-39028, it is recommended to update to the latest version of GNU Inetutils and MIT krb5-appl.
- collector/launchpad-cve
- collector/security-tracker-debian
- collector/usn-cve
- collector/nvd-api
- collector/nvd-index
- collector/nvd-cve
- package-manager/debian
- package-manager/ubuntu
- vendor/gnu
- canonical/gnu inetutils
- version/gnu inetutils/2.3
- vendor/mit
- canonical/mit kerberos 5
- version/mit kerberos 5/1.0.3
- vendor/debian
- canonical/debian debian linux
- version/debian debian linux/10.0
- vendor/netkit-telnet project
- canonical/netkit-telnet project netkit-telnet
- version/netkit-telnet project netkit-telnet/0.17