2 matches found
CVE-2026-56741
JLine3 Telnet server's remote-telnet module did not bound NAWS-terminal dimensions, reading width/height as 16-bit values and passing 65535x65535 to setTerminalGeometry. This allowed an unauthenticated remote attacker to induce repeated heavy rendering, causing CPU exhaustion Denial of Service. A...
PT-2026-60885
Name of the Vulnerable Software and Affected Versions JLine versions prior to 3.30.14 JLine versions prior to 4.0.16 JLine versions prior to 4.2.1 Description The JLine3 Telnet server remote-telnet module fails to apply an upper bound to terminal dimensions received via the Telnet NAWS option. Th...