DebianDEBIAN:DLA-205-1:67179[SECURITY] [DLA 205-1] ppp security update
4.3 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:N/I:N/A:P
0.068 Low
EPSS
Percentile
93.8%
Package : ppp
Version : 2.4.5-4+deb6u2
CVE ID : CVE-2015-3310
Debian Bug : 782450
Emanuele Rocca discovered that ppp, a daemon implementing the
Point-to-Point Protocol, was subject to a buffer overflow when
communicating with a RADIUS server. This would allow unauthenticated
users to cause a denial-of-service by crashing the daemon.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 7 | i386 | ppp-udeb | < 2.4.5-5.1+deb7u2 | ppp-udeb_2.4.5-5.1+deb7u2_i386.deb |
| Debian | 7 | powerpc | ppp | < 2.4.5-5.1+deb7u2 | ppp_2.4.5-5.1+deb7u2_powerpc.deb |
| Debian | 7 | s390 | ppp-udeb | < 2.4.5-5.1+deb7u2 | ppp-udeb_2.4.5-5.1+deb7u2_s390.deb |
| Debian | 7 | all | ppp | < 2.4.5-5.1+deb7u2 | ppp_2.4.5-5.1+deb7u2_all.deb |
| Debian | 7 | all | ppp-dev | < 2.4.5-5.1+deb7u2 | ppp-dev_2.4.5-5.1+deb7u2_all.deb |
| Debian | 7 | s390x | ppp-udeb | < 2.4.5-5.1+deb7u2 | ppp-udeb_2.4.5-5.1+deb7u2_s390x.deb |
| Debian | 7 | s390x | ppp | < 2.4.5-5.1+deb7u2 | ppp_2.4.5-5.1+deb7u2_s390x.deb |
| Debian | 6 | amd64 | ppp | < 2.4.5-4+deb6u2 | ppp_2.4.5-4+deb6u2_amd64.deb |
| Debian | 7 | sparc | ppp-udeb | < 2.4.5-5.1+deb7u2 | ppp-udeb_2.4.5-5.1+deb7u2_sparc.deb |
| Debian | 6 | i386 | ppp-udeb | < 2.4.5-4+deb6u2 | ppp-udeb_2.4.5-4+deb6u2_i386.deb |
Related
4.3 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:N/I:N/A:P
0.068 Low
EPSS
Percentile
93.8%