rpm package
suse/ppp&distro=SUSE Linux Enterprise Server for SAP Applications 12 SP2
pkg:rpm/suse/ppp&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP2
Vulnerabilities (2)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2020-8597 | — | < 2.4.7-4.3.1 | 2.4.7-4.3.1 | Feb 3, 2020 | eap.c in pppd in ppp 2.4.2 through 2.4.8 has an rhostname buffer overflow in the eap_request and eap_response functions. | ||
| CVE-2015-3310 | — | < 2.4.7-3.4 | 2.4.7-3.4 | Apr 24, 2015 | Buffer overflow in the rc_mksid function in plugins/radius/util.c in Paul's PPP Package (ppp) 2.4.6 and earlier, when the PID for pppd is greater than 65535, allows remote attackers to cause a denial of service (crash) via a start accounting message to the RADIUS server. |
- CVE-2020-8597Feb 3, 2020affected < 2.4.7-4.3.1fixed 2.4.7-4.3.1
eap.c in pppd in ppp 2.4.2 through 2.4.8 has an rhostname buffer overflow in the eap_request and eap_response functions.
- CVE-2015-3310Apr 24, 2015affected < 2.4.7-3.4fixed 2.4.7-3.4
Buffer overflow in the rc_mksid function in plugins/radius/util.c in Paul's PPP Package (ppp) 2.4.6 and earlier, when the PID for pppd is greater than 65535, allows remote attackers to cause a denial of service (crash) via a start accounting message to the RADIUS server.