Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
centosCentOS ProjectCESA-2020:1349
HistoryApr 08, 2020 - 3:29 p.m.

krb5 security update

2020-04-0815:29:38
CentOS Project
lists.centos.org
63

10 High

AI Score

Confidence

High

0.833 High

EPSS

Percentile

98.4%

JSON

CentOS Errata and Security Advisory CESA-2020:1349

The krb5-appl packages contain Kerberos-aware versions of telnet, ftp, rsh, and rlogin clients and servers. Kerberos is a network authentication system which allows clients and servers to authenticate to each other using symmetric encryption and trusted third-party, the Key Distribution Center (KDC).

Security Fix(es):

  • telnet-server: no bounds checks in nextitem() function allows to remotely execute arbitrary code (CVE-2020-10188)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Merged security bulletin from advisories:
https://lists.centos.org/pipermail/centos-announce/2020-April/085816.html

Affected packages:
krb5-appl-clients
krb5-appl-servers

Upstream details at:
https://access.redhat.com/errata/RHSA-2020:1349

Related

prion 1
nessus 39
fedora 3
broadcom 1
mageia 2
openvas 19
redhat 7
cvelist 1
arista 1
centos 1
ubuntu 2
amazon 2
ubuntucve 1
oraclelinux 4
f5 1
redhatcve 1
cisa 1
veracode 1
debiancve 1
checkpoint_advisories 1
osv 1
paloalto 1
cve 1
cisco 1
archlinux 1
jvn 1
oracle 1
prion
prion
Buffer overflow
2020-03-06 15:15:00
nessus
nessus
RHEL 8 : telnet (RHSA-2020:1318)
2020-04-07 00:00:00
RHEL 7 : telnet (RHSA-2022:0011)
2022-01-04 00:00:00
Debian DLA-2176-1 : inetutils security update
2020-05-15 00:00:00
fedora
fedora
[SECURITY] Fedora 30 Update: telnet-0.17-77.fc30
2020-04-04 04:19:03
[SECURITY] Fedora 32 Update: telnet-0.17-79.fc32
2020-04-01 16:35:49
[SECURITY] Fedora 31 Update: telnet-0.17-78.fc31
2020-04-04 03:23:08
broadcom
broadcom
BSA-2021-1013
2021-07-10 00:00:00
mageia
mageia
Updated krb5-appl packages fix security vulnerability
2020-04-15 13:12:14
Updated netkit-telnet packages fix security vulnerability
2020-05-15 18:48:04
openvas
openvas
Debian: Security Advisory (DLA-2341-1)
2020-08-25 00:00:00
Mageia: Security Advisory (MGASA-2020-0169)
2022-01-28 00:00:00
Fedora: Security Advisory for telnet (FEDORA-2020-6b07ff2526)
2020-04-05 00:00:00
redhat
redhat
(RHSA-2020:1342) Important: telnet security update
2020-04-07 07:01:47
(RHSA-2022:0011) Important: telnet security update
2022-01-04 07:56:18
(RHSA-2022:0158) Important: telnet security update
2022-01-18 08:22:01
cvelist
cvelist
CVE-2020-10188
2020-03-06 14:07:21
arista
arista
Security Advisory 0048
2020-05-13 00:00:00
centos
centos
telnet security update
2020-04-08 15:30:05
ubuntu
ubuntu
Inetutils vulnerability
2021-08-19 00:00:00
Inetutils vulnerability
2021-08-20 00:00:00
amazon
amazon
Important: telnet
2020-06-23 06:42:00
Important: telnet
2020-05-05 01:20:00
ubuntucve
ubuntucve
CVE-2020-10188
2020-03-06 00:00:00
oraclelinux
oraclelinux
telnet security update
2020-04-11 00:00:00
telnet security update
2020-04-07 00:00:00
krb5-appl security update
2020-04-13 00:00:00
f5
f5
K22130301 : Telnet vulnerability CVE-2020-10188
2020-05-07 00:00:00
redhatcve
redhatcve
CVE-2020-10188
2020-03-09 15:41:07
cisa
cisa
Cisco Releases Security Advisory for Telnet Vulnerability in IOS XE Software
2020-06-25 00:00:00
veracode
veracode
Remote Code Execution (RCE)
2022-01-14 06:00:46
debiancve
debiancve
CVE-2020-10188
2020-03-06 15:15:14
checkpoint_advisories
checkpoint_advisories
Netkit Telnet Buffer Overflow (CVE-2020-10188)
2020-12-27 00:00:00
osv
osv
inetutils vulnerability
2021-08-20 17:56:24
paloalto
paloalto
PAN-OS: Impact of Telnet Remote-Code-Execution (RCE) Vulnerability (CVE-2020-10188)
2021-09-08 16:00:00
cve
cve
CVE-2020-10188
2020-03-06 15:15:14
cisco
cisco
Telnet Vulnerability Affecting Cisco Products: June 2020
2020-06-24 16:00:00
archlinux
archlinux
[ASA-202106-20] inetutils: arbitrary code execution
2021-06-09 00:00:00
jvn
jvn
JVN#96561229: Multiple vulnerabilities in Operation management interface of FUJITSU Network IPCOM
2022-05-09 00:00:00
oracle
oracle
Oracle Critical Patch Update Advisory - April 2021
2021-04-20 00:00:00

10 High

AI Score

Confidence

High

0.833 High

EPSS

Percentile

98.4%

JSON
Related for CESA-2020:1349
prion1nessus39fedora3broadcom1mageia2openvas19redhat7cvelist1arista1centos1ubuntu2amazon2ubuntucve1oraclelinux4f51redhatcve1cisa1veracode1debiancve1checkpoint_advisories1osv1paloalto1cve1cisco1archlinux1jvn1oracle1