Unity Linux 20.1070a Security Update: kernel (UTSA-2026-013677)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-013677 advisory. In the Linux kernel, the following vulnerability has been resolved: ppp: associate skb with a device at tx Syzkaller triggered flow dissector warning with the...

Unity Linux 20.1070e Security Update: ppp (UTSA-2026-005828)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-005828 advisory. The passprompt plugin in pppd in ppp before 2.5.2 mishandles privileges. Tenable has extracted the preceding description block directly from the Unity Linux security...

Azure Linux 3.0 Security Update: ppp (CVE-2015-3310)

The version of ppp installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2015-3310 advisory. - Buffer overflow in the rcmksid function in plugins/radius/util.c in Paul's PPP Package ppp 2.4.6 and earlier, wh...

Azure Linux 3.0 Security Update: ppp (CVE-2022-4603)

The version of ppp installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2022-4603 advisory. - A vulnerability classified as problematic has been found in ppp. Affected is the function dumpppp of the file...

EulerOS Virtualization 2.13.1 : ppp (EulerOS-SA-2025-2187)

According to the versions of the ppp package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : The passprompt plugin in pppd in ppp before 2.5.2 mishandles privileges.CVE-2024-58250 Tenable has extracted the preceding description...

CVE-2015-3310 affecting package ppp for versions less than 2.5.0-1

CVE-2015-3310 affecting package ppp for versions less than 2.5.0-1. An upgraded version of the package is available that resolves this issue...

CVE-2022-4603 affecting package ppp for versions less than 2.5.0-1

CVE-2022-4603 affecting package ppp for versions less than 2.5.0-1. An upgraded version of the package is available that resolves this issue...

EulerOS 2.0 SP10 : ppp (EulerOS-SA-2025-1785)

According to the versions of the ppp package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : The passprompt plugin in pppd in ppp before 2.5.2 mishandles privileges.CVE-2024-58250 Tenable has extracted the preceding description block directly...

EulerOS 2.0 SP10 : ppp (EulerOS-SA-2025-1808)

According to the versions of the ppp package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : The passprompt plugin in pppd in ppp before 2.5.2 mishandles privileges.CVE-2024-58250 Tenable has extracted the preceding description block directly...

TencentOS Server 4: ppp (TSSA-2025:0123)

The version of Tencent Linux installed on the remote TencentOS Server 4 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the TSSA-2025:0123 advisory. Package updates are available for TencentOS Server 4 that fix the following vulnerabilities:...

Amazon Linux AMI : ppp (ALAS-2025-1980)

The version of ppp installed on the remote host is prior to 2.4.5-11.10. It is, therefore, affected by a vulnerability as referenced in the ALAS-2025-1980 advisory. The passprompt plugin in pppd in ppp before 2.5.2 mishandles privileges. CVE-2024-58250 Tenable has extracted the preceding...

Important: kernel

Issue Overview: In the Linux kernel, the following vulnerability has been resolved: tipc: wait and exit until all work queues are done CVE-2021-47163 Placeholder CVE. Details forthcoming CVE-2024-10929 In the Linux kernel, the following vulnerability has been resolved: tipc: guard against string...

CVE-2024-49946

In the Linux kernel, the following vulnerability has been resolved: ppp: do not assume bh is held in pppchannelbridgeinput Networking receive path is usually handled from BH handler. However, some protocols need to acquire the socket lock, and packets might be stored in the socket backlog is the...

Denial of service

Windows Point-to-Point Protocol PPP Denial of Service Vulnerability...

CVE-2022-35744 Windows Point-to-Point Protocol (PPP) Remote Code Execution Vulnerability

...

K16686: Point-to-Point Protocol (PPP) vulnerability CVE-2015-3310

Security Advisory Description Buffer overflow in the rcmksid function in plugins/radius/util.c in Paul's PPP Package ppp 2.4.6 and earlier, when the PID for pppd is greater than 65535, allows remote attackers to cause a denial of service crash via a start accounting message to the RADIUS server...

Unspecified Vulnerability in Accel-Ppp

Accel-Ppp is a high performance Pptp/L2tp/Pppoe/Ipoe server for Linux. ACCEL-PPP 1.12.0 suffers from a security vulnerability that originates from a read out-of-bounds in tritoncontextschedule. An attacker can exploit the vulnerability to obtain sensitive information...

CVE-2021-42054

ACCEL-PPP 1.12.0 has an out-of-bounds read in tritoncontextschedule if the client exits after authentication...

NewStart CGSL CORE 5.05 / MAIN 5.05 : ppp Vulnerability (NS-SA-2020-0113)

The remote NewStart CGSL host, running version CORE 5.05 / MAIN 5.05, has ppp packages installed that are affected by a vulnerability: - eap.c in pppd in ppp 2.4.2 through 2.4.8 has an rhostname buffer overflow in the eaprequest and eapresponse functions. CVE-2020-8597 Note that Nessus has not...

Ubuntu 16.04 LTS / 18.04 LTS / 20.04 LTS : ppp vulnerability (USN-4451-1)

The remote Ubuntu 16.04 LTS / 18.04 LTS / 20.04 LTS host has packages installed that are affected by a vulnerability as referenced in the USN-4451-1 advisory. Thomas Chauchefoin working with Trend Micros Zero Day Initiative, discovered that ppp incorrectly handled module loading. A local attacker...