Re: [PLUG] Ancient telnet bug happily hands out root to attackers

Alan D. Salewski via plug on 22 Jan 2026 21:05:25 -0800

[Date Prev] [Date Next] [Thread Prev] [Thread Next] [Date Index] [Thread Index]

Re: [PLUG] Ancient telnet bug happily hands out root to attackers

From: "Alan D. Salewski via plug" <plug@lists.phillylinux.org>
To: plug@lists.phillylinux.org
Subject: Re: [PLUG] Ancient telnet bug happily hands out root to attackers
Date: Fri, 23 Jan 2026 00:05:17 -0500
Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d= messagingengine.com; h=cc:content-type:content-type:date:date :feedback-id:feedback-id:from:from:in-reply-to:in-reply-to :message-id:mime-version:references:reply-to:subject:subject:to :to:x-me-proxy:x-me-sender:x-me-sender:x-sasl-enc; s=fm2; t= 1769144719; x=1769231119; bh=fYfyETlcx0BpYbIA5DaFzWBuuurF4hFkA68 y3Aihy08=; b=qgMijjySXesB9mvpv1mEIhl+WVDckRCZAMWIBsrMuhQ8WOqeuNI e8+0wIVmJUvRLLpCHh+Pq0yIjst8IyOWq8ve2RFE2uuLY3l6hF5k9lWvPXo4XuqS liRNYjKc8fAS2sSculZaQeXwSHDx6IsBXv87G2RE5Ovc0kDcrDhQML3upZoFnn54 gPv1UTcTKoBCYPE59Uhq7ZUe/qg5s21jqYALza65p1qxLoHwiKzSRtpbq6urDHmu GteK3ShPsICjjP4GiiDVZ34afyYj4CHoo6a3zHGBJzDXILrjePYAXdPHzZWASBim xDiCNa69JA+wx8Gj7OHH4/6TN/J02uZxjjw==
Feedback-id: if9414728:Fastmail
Mail-followup-to: plug@lists.phillylinux.org
Reply-to: "Alan D. Salewski" <ads@salewski.email>
Sender: "plug" <plug-bounces@lists.phillylinux.org>
User-agent: Mutt/2.0.5 (2021-01-21)

On 2026-01-22 09:21:55, jeffv via plug <plug@lists.phillylinux.org> spake thus:

https://www.theregister.com/2026/01/22/root_telnet_bug/

A recently disclosed critical vulnerability in the GNU InetUtils telnet
daemon (telnetd) is "trivial" to exploit, experts say.

The bug, which had gone unnoticed for nearly 11 years, was disclosed on
January 20 and is tracked as CVE-2026-24061 (9.8).


The LWN.net coverage and discussion of it:

    "Remote authentication bypass in telnetd"
    posted 2026-01-20 by Jonathan Corbet
    https://lwn.net/Articles/1055213/

--
a l a n   d.   s a l e w s k i
ads@salewski.email
salewski@att.net
https://github.com/salewski
___________________________________________________________________________
Philadelphia Linux Users Group         --        http://www.phillylinux.org
Announcements - http://lists.phillylinux.org/mailman/listinfo/plug-announce
General Discussion  --   http://lists.phillylinux.org/mailman/listinfo/plug

References:
- [PLUG] Ancient telnet bug happily hands out root to attackers
  - From: jeffv via plug <plug@lists.phillylinux.org>

Prev by Date: Re: [PLUG] Ancient telnet bug happily hands out root to attackers
Next by Date: [PLUG] Waterfox runaway
Previous by thread: Re: [PLUG] Ancient telnet bug happily hands out root to attackers
Next by thread: [PLUG] Waterfox runaway
Index(es):
- Date
- Thread