Control: reopen -1 On Sun, Jan 26, 2020 at 02:51:05AM +0000, Debian Bug Tracking System wrote: >... > inetutils (2:1.9.4-11) unstable; urgency=medium > . > * Add patches from upstream: > - telnet: Validate supplied environment variables. CVE-2019-0053. > Closes: #945861 >...
Using [1] I am getting in unstable: # python3 telnet_term_0day.py [+] Multiple vendor telnet.c client environment handling PoC (IAC SB TELQUAL_IS) [-] connected, corrupting client heap [-] done. merry haxmas. # $ `perl -e 'print Ax"50000"'` inetutils-telnet -l`perl -e 'print "A"x5000'` 127.0.0.1 Trying 127.0.0.1... Connected to 127.0.0.1. Escape character is '^]'. Segmentation fault (core dumped) $ I assume this means the bug is not yet completely fixed? cu Adrian [1] https://raw.githubusercontent.com/hackerhouse-opensource/exploits/master/telnet_term_0day.py
