CVE-2020-10188 is a security vulnerability in telnetd. As https://github.com/freebsd/freebsd-src/commit/5760cb266e0ab04c221c2acdb4b6c4c141130ecd said, freebsd has fixed this CVE in contrib/telnet/telnetd/utility.c. However, I've found that in heimdal, which is used in ravynos to encrypt and decrypt, also uses telnetd. That is to say freebsd may still contains this security vulnerability which will result in arbitrary code execution. The file which contains vulnerable functions is crypto/heimdal/appl/telnet/telnetd/utility.c. Update the heimdal to 7.8 or a newer verison may help to solve this, since heimdal had already remove telnet support in https://github.com/heimdal/heimdal/commit/e55b0d0ca5038a8101276a593ffbb6be4c27c8d0.
The latest heimdal available is 7.8 for now and it is already in the port tree since 83f79ba0e0ca (2022-11-15).
(In reply to Andrey Korobkov from comment #1) That's true, but I'm talking about heimdal which is used in the crypto path(https://github.com/freebsd/freebsd-src/tree/783d3ff6d7fae619db8a7990b8a6387de0c677b5/crypto/heimdal). The lastest version on GitHub shows that the heimdal in the crypto path is still an outdated version(1.5.2).
Aah. Sorry then. I thought about one in the ports. (Didn't know about one in the base).