Lucene search
K

134 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2023-25849

Malicious code in bioql PyPI...

5.3CVSS6.4AI score0.01374EPSS
Exploits0References1
OSV
OSV
added 2025/09/19 4:15 p.m.2 views

DEBIAN-CVE-2025-39847

In the Linux kernel, the following vulnerability has been resolved: ppp: fix memory leak in padcompressskb If allocskb fails in padcompressskb, it returns NULL without releasing the old skb. The caller does: skb = padcompressskbppp, skb; if !skb goto drop; drop: kfreeskbskb; When padcompressskb...

5.5CVSS5.3AI score0.00149EPSS
Exploits0References1
Microsoft CVE
Microsoft CVE
added 2025/09/07 8:11 a.m.5 views

ppp: fix race conditions in ppp_fill_forward_path

...

4.7CVSS6.8AI score0.00105EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2025/09/06 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2025-39673

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - ppp: fix race conditions in pppfillforwardpath pppfillforwardpath has two race conditions: 1. The ppp-channels list can change between listempty and...

4.7CVSS6.5AI score0.00105EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2025/08/14 12:0 a.m.9 views

EulerOS 2.0 SP11 : ppp (EulerOS-SA-2025-1939)

According to the versions of the ppp package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : The passprompt plugin in pppd in ppp before 2.5.2 mishandles privileges.CVE-2024-58250 Tenable has extracted the preceding description block directly...

9.3CVSS5.5AI score0.00208EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/08/13 12:0 a.m.7 views

EulerOS 2.0 SP11 : ppp (EulerOS-SA-2025-1965)

According to the versions of the ppp package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : The passprompt plugin in pppd in ppp before 2.5.2 mishandles privileges.CVE-2024-58250 Tenable has extracted the preceding description block directly...

9.3CVSS5.5AI score0.00208EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2025/08/12 12:0 a.m.4 views

PT-2025-32782 · Unknown +1 · Ppp Eap-Tls +1

Name of the Vulnerable Software and Affected Versions: Remote Access Point-to-Point Protocol PPP EAP-TLS affected versions not specified Description: A use after free issue exists in Remote Access Point-to-Point Protocol PPP EAP-TLS. This allows a locally authorized attacker to elevate privileges...

7.3CVSS7AI score0.00565EPSS
Exploits0References6
RedhatCVE
RedhatCVE
added 2025/05/21 7:41 p.m.7 views

CVE-2001-1565

Point to Point Protocol daemon pppd in MacOS x 10.0 and 10.1 through 10.1.5 provides the username and password on the command line, which allows local users to obtain authentication information via the ps command...

2.1CVSS6.9AI score0.00343EPSS
Exploits0References1
Redos
Redos
added 2025/05/13 12:0 a.m.35 views

ROS-2-643

2.643 Vulnerability in PPPD CVE-2020-8597 1. Vulnerability Description: The issue CVE-2020-8597 is a stack buffer overflow vulnerability resulting from a logic error in the EAP Extensible Authentication Protocol packet parser in PPPD eaprequest and eapresponse functions in eap.c. The vulnerabilit...

9.8CVSS10AI score0.19582EPSS
Exploits3
OSV
OSV
added 2025/05/01 1:15 p.m.3 views

DEBIAN-CVE-2025-37749

In the Linux kernel, the following vulnerability has been resolved: net: ppp: Add bound checking for skb data on pppsynctxmung Ensure we have enough data in linear buffer from skb before accessing initial bytes. This prevents potential out-of-bounds accesses when processing short packets. When...

7.1CVSS6.1AI score0.00166EPSS
Exploits0References1
OSV
OSV
added 2025/04/01 4:15 p.m.3 views

UBUNTU-CVE-2025-21922

In the Linux kernel, the following vulnerability has been resolved: ppp: Fix KMSAN uninit-value warning with bpf Syzbot caught an "KMSAN: uninit-value" warning 1, which is caused by the ppp driver not initializing a 2-byte header when using socket filter. The following code can generate a PPP...

5.5CVSS6.2AI score0.002EPSS
Exploits0References59
BDU FSTEC
BDU FSTEC
added 2025/02/10 12:0 a.m.8 views

The vulnerability of the ppp_read() and ppp_write() functions (drivers/net/ppp/ppp_generic.c) in the Linux operating system’s PPP kernel driver allows a hacker to cause a service failure.

The vulnerability of the pppread and pppwrite functions drivers/net/ppp/pppgeneric.c in the Linux kernel-based PPP driver is related to insufficient input data validation. Exploiting this vulnerability could allow an attacker to cause a service failure...

4.1CVSS6.6AI score0.00287EPSS
Exploits0References52Affected Software7
Microsoft CVE
Microsoft CVE
added 2024/12/12 8:0 a.m.4 views

ppp: do not assume bh is held in ppp_channel_bridge_input()

...

5.5CVSS6.7AI score0.00235EPSS
Exploits0
RedHat Linux
RedHat Linux
added 2024/11/12 9:11 a.m.8 views

kernel: ppp_async: limit MRU to 64K

In the Linux kernel, the following vulnerability has been resolved: pppasync: limit MRU to 64K syzbot triggered a warning 1 in allocpages: WARNONONCEGFPorder MAXPAGEORDER, gfp Willem fixed a similar issue in commit c0a2a1b0d631 "ppp: limit MRU to 64K" Adopt the same sanity check for...

5.5CVSS6.4AI score0.00254EPSS
Exploits0References5
Microsoft CVE
Microsoft CVE
added 2024/11/09 8:0 a.m.3 views

ppp: fix ppp_async_encode() illegal access

...

7.1CVSS7.2AI score0.00272EPSS
Exploits0
OSV
OSV
added 2024/10/21 8:15 p.m.7 views

AZL-51111 CVE-2024-50035 affecting package kernel for versions less than 5.15.173.1-1

In the Linux kernel, the following vulnerability has been resolved: ppp: fix pppasyncencode illegal access syzbot reported an issue in pppasyncencode 1 In this case, pppoesendmsg is called with a zero size. Then pppasyncencode is called with an empty skb. BUG: KMSAN: uninit-value in pppasyncencod...

7.1CVSS6.8AI score0.00272EPSS
Exploits0References1
OSV
OSV
added 2024/10/21 6:15 p.m.3 views

DEBIAN-CVE-2024-49946

In the Linux kernel, the following vulnerability has been resolved: ppp: do not assume bh is held in pppchannelbridgeinput Networking receive path is usually handled from BH handler. However, some protocols need to acquire the socket lock, and packets might be stored in the socket backlog is the...

5.5CVSS5.7AI score0.00235EPSS
Exploits0References1
RedHat Linux
RedHat Linux
added 2024/09/11 1:10 a.m.5 views

kernel: ppp: reject claimed-as-LCP but actually malformed packets

The vulnerability was found in the Linux kernel's ppp pppgeneric.c driver, in the pppread and pppwrite functions where malformed packets were erroneously identified as LCP packets, leading to potential issues with packet handling. This flaw could potentially lead to system instability...

5.5CVSS7.2AI score0.00287EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2024/09/04 12:15 a.m.5 views

kernel: ppp: reject claimed-as-LCP but actually malformed packets

The vulnerability was found in the Linux kernel's ppp pppgeneric.c driver, in the pppread and pppwrite functions where malformed packets were erroneously identified as LCP packets, leading to potential issues with packet handling. This flaw could potentially lead to system instability...

5.5CVSS7.2AI score0.00287EPSS
Exploits0References5
OSV
OSV
added 2024/04/02 7:15 a.m.5 views

UBUNTU-CVE-2024-26675

In the Linux kernel, the following vulnerability has been resolved: pppasync: limit MRU to 64K syzbot triggered a warning 1 in allocpages: WARNONONCEGFPorder MAXPAGEORDER, gfp Willem fixed a similar issue in commit c0a2a1b0d631 "ppp: limit MRU to 64K" Adopt the same sanity check for...

5.5CVSS6.2AI score0.00254EPSS
Exploits0References27
Rows per page
Query Builder