Alerts This Week
Warning Icon 1 1,308
Alerts This Week
Warning Icon 1 1,308

Ubuntu 25.10 Inetutils Telnetd Auth Bypass USN-7992-1 CVE-2026-24061

ubuntu
Calendar Grey February 3, 2026
Dist Ubuntu Esm H88
Important security update for Ubuntu Inetutils addresses access issues in telnetd that may lead to unauthorized access.
Inetutils could allow unintended access to network services.

Summary

Inetutils could allow unintended access to network services.

Software Description:

- inetutils: Collection of common network programs

Details:

Kyu Neushwaistein discovered that telnetd in Inetutils incorrectly handled

certain environment variables. A remote attacker could use this issue to

bypass authentication and open a session as an administrator.

Topics%20covered

Topics Covered

security advisory Ubuntu important authentication bypass network access inetutils

Update Instructions

The problem can be corrected by updating your system to the following
package versions:

Ubuntu 25.10
  inetutils-telnetd               2:2.6-1ubuntu3.1

Ubuntu 24.04 LTS
  inetutils-telnetd               2:2.5-3ubuntu4.1

Ubuntu 22.04 LTS
  inetutils-telnetd               2:2.2-2ubuntu0.2

In general, a standard system update will make all the necessary changes.

References

https://ubuntu.com/security/notices/USN-7992-1

CVE-2026-24061

Severity
important
Lowest
Low
Medium
High
Critical

Ubuntu Security Notice USN-7992-1

Topics%20covered

Topics Covered

security advisory Ubuntu important authentication bypass network access inetutils

Package Information

https://launchpad.net/ubuntu/+source/inetutils/2:2.2-2ubuntu0.2

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here