{"id":"MGASA-2020-0169","summary":"Updated krb5-appl packages fix security vulnerability","details":"Updated krb5-appl packages fix security vulnerability:\n\nA vulnerability was found where incorrect bounds checks in the telnet\nserver’s (telnetd) handling of short writes and urgent data, could lead\nto information disclosure and corruption of heap data. An unauthenticated\nremote attacker could exploit these bugs by sending specially crafted\ntelnet packets to achieve arbitrary code execution in the telnet server\n(CVE-2020-10188).\n","modified":"2026-04-16T04:41:14.176605456Z","published":"2020-04-15T10:12:14Z","upstream":["CVE-2020-10188"],"references":[{"type":"ADVISORY","url":"https://advisories.mageia.org/MGASA-2020-0169.html"},{"type":"REPORT","url":"https://bugs.mageia.org/show_bug.cgi?id=26451"},{"type":"WEB","url":"https://access.redhat.com/errata/RHSA-2020:1349"}],"affected":[{"package":{"name":"krb5-appl","ecosystem":"Mageia:7","purl":"pkg:rpm/mageia/krb5-appl?arch=source&distro=mageia-7"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"1.0.3-10.1.mga7"}]}],"ecosystem_specific":{"section":"core"},"database_specific":{"source":"https://advisories.mageia.org/MGASA-2020-0169.json"}}],"schema_version":"1.7.5","credits":[{"name":"Mageia","contact":["https://wiki.mageia.org/en/Packages_Security_Team"],"type":"COORDINATOR"}]}