Advisories » MGASA-2026-0122

Updated krb5-appl packages fix security vulnerability

Publication date: 07 May 2026
Modification date: 07 May 2026
Type: security
Affected Mageia releases : 9
CVE: CVE-2026-32746

Description

telnetd in GNU inetutils through 2.7 allows an out-of-bounds write in
the LINEMODE SLC (Set Local Characters) suboption handler because
add_slc does not check whether the buffer is full. (CVE-2026-32746)
                

References

• https://bugs.mageia.org/show_bug.cgi?id=35468
• https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/message/X5ABJVGBTZGH3FCDZEF3XQAMMJVC5AWA/
• https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-32746

SRPMS

9/core

• krb5-appl-1.0.3-16.1.mga9