openSUSE-SU-2015:2121-1

Опубликовано: 27 нояб. 2015

Источник: suse-cvrf

Описание

security update for ppp

The ppp package was updated to fix one security issue.

CVE-2015-3310: Fixed buffer overflow in radius plug-ins rc_mksid() (bnc#927841).

Список пакетов

openSUSE Leap 42.1

ppp-2.4.7-5.1

ppp-devel-2.4.7-5.1

Ссылки

https://lists.opensuse.org/opensuse-updates/2015-11/msg00147.html
E-Mail link for openSUSE-SU-2015:2121-1
https://www.suse.com/support/security/rating/
SUSE Security Ratings

Описание

Buffer overflow in the rc_mksid function in plugins/radius/util.c in Paul's PPP Package (ppp) 2.4.6 and earlier, when the PID for pppd is greater than 65535, allows remote attackers to cause a denial of service (crash) via a start accounting message to the RADIUS server.

Затронутые продукты

openSUSE Leap 42.1:ppp-2.4.7-5.1

openSUSE Leap 42.1:ppp-devel-2.4.7-5.1

Ссылки

https://www.suse.com/security/cve/CVE-2015-3310.html
CVE-2015-3310
https://bugzilla.suse.com/1149972
SUSE Bug 1149972
https://bugzilla.suse.com/927841
SUSE Bug 927841

openSUSE-SU-2015:2121-1

Описание

Список пакетов

openSUSE Leap 42.1

Ссылки

Уязвимость: CVE-2015-3310

Описание

Затронутые продукты

Ссылки