CVE-2020-8597

Опубликовано: 03 фев. 2020

Источник: debian

Описание

eap.c in pppd in ppp 2.4.2 through 2.4.8 has an rhostname buffer overflow in the eap_request and eap_response functions.

Пакет	Статус	Версия исправления	Релиз	Тип
lwip	fixed	2.1.2+dfsg1-5		package
lwip	fixed	2.0.3-3+deb10u1	buster	package
ppp	fixed	2.4.8-1+1		package

http://git.savannah.nongnu.org/cgit/lwip.git/commit/?id=2ee3cbe69c6d2805e64e7cac2a1c1706e49ffd86
https://github.com/paulusmack/ppp/commit/8d7970b8f3db727fe798b65f3377fe6787575426

CVE-2020-8597

CVSS3: 9.8

ubuntu

около 6 лет назад

eap.c in pppd in ppp 2.4.2 through 2.4.8 has an rhostname buffer overflow in the eap_request and eap_response functions.

CVE-2020-8597

CVSS3: 9.8

redhat

около 6 лет назад

eap.c in pppd in ppp 2.4.2 through 2.4.8 has an rhostname buffer overflow in the eap_request and eap_response functions.

CVE-2020-8597

CVSS3: 9.8

nvd

около 6 лет назад

eap.c in pppd in ppp 2.4.2 through 2.4.8 has an rhostname buffer overflow in the eap_request and eap_response functions.

CVE-2020-8597

CVSS3: 9.8

msrc

больше 1 года назад

Описание отсутствует

openSUSE-SU-2020:0286-1

suse-cvrf

почти 6 лет назад

Security update for ppp