CVE-2015-3310
EPSS 1.7%ppp - security update
發布日:2015/4/24修改日:2026/4/28
也稱為:DEBIAN-CVE-2015-3310
描述
Buffer overflow in the rc_mksid function in plugins/radius/util.c in Paul's PPP Package (ppp) 2.4.6 and earlier, when the PID for pppd is greater than 65535, allows remote attackers to cause a denial of service (crash) via a start accounting message to the RADIUS server.
受影響套件(3)
- Debian/pppfrom 0, < 2.4.6-3.1
- Debian/pppfrom 0, < 2.4.5-4+deb6u2
- Debian/pppfrom 0, < 2.4.5-5.1+deb7u2