Information on source package ppp

Available versions

ReleaseVersion
stretch2.4.7-1+4+deb9u1
buster2.4.7-2+4.1+deb10u1
bullseye2.4.9-1+1
bookworm2.4.9-1+1
sid2.4.9-1+1

Open unimportant issues

BugstretchbusterbullseyebookwormsidDescription
CVE-2008-5367vulnerablevulnerablevulnerablevulnerablevulnerableip-up in ppp-udeb 2.4.4rel on Debian GNU/Linux allows local users to o ...
CVE-2008-5366vulnerablevulnerablevulnerablevulnerablevulnerableThe postinst script in ppp 2.4.4rel on Debian GNU/Linux allows local u ...

Resolved issues

BugDescription
CVE-2020-15704The modprobe child process in the ./debian/patches/load_ppp_generic_if ...
CVE-2020-8597eap.c in pppd in ppp 2.4.2 through 2.4.8 has an rhostname buffer overf ...
CVE-2018-11574Improper input validation together with an integer overflow in the EAP ...
CVE-2015-3310Buffer overflow in the rc_mksid function in plugins/radius/util.c in P ...
CVE-2014-3158Integer overflow in the getword function in options.c in pppd in Paul' ...
CVE-2006-2194The winbind plugin in pppd for ppp 2.4.4 and earlier does not check th ...
CVE-2004-1002Integer underflow in pppd in cbcp.c for ppp 2.4.1 allows remote attack ...

Security announcements

DSA / DLADescription
DSA-4632-1ppp - security update
DLA-2097-1ppp - security update
DLA-205-1ppp - security update
DSA-3228-1ppp - security update
DSA-3079-1ppp - security update
DLA-74-1ppp - security update
DSA-1106ppp - programming error

Search for package or bug name: Reporting problems