Univention Bugzilla – Bug 50922
ppp: Multiple issues (4.3)
Last modified: 2020-03-11 13:57:32 CET
New Debian ppp 2.4.7-1+4+deb9u1 fixes: This update addresses the following issue: * Buffer overflow in the eap_request and eap_response functions in eap.c (CVE-2020-8597)
--- mirror/ftp/4.3/unmaintained/4.3-0/source/ppp_2.4.7-1+4.dsc +++ apt/ucs_4.3-0-errata4.3-5/source/ppp_2.4.7-1+4+deb9u1.dsc @@ -1,3 +1,8 @@ +2.4.7-1+4+deb9u1 [Thu, 20 Feb 2020 23:08:23 +0100] Salvatore Bonaccorso <carnil@debian.org>: + + * Non-maintainer upload by the Security Team. + * pppd: Fix bounds check in EAP code (CVE-2020-8597) (Closes: #950618) + 2.4.7-1+4 [Fri, 11 Nov 2016 15:03:42 +0000] Chris Boot <bootc@debian.org>: [ Helmut Grohne ] <http://10.200.17.11/4.3-5/#7967800215054161591>
OK: yaml OK: announce_errata OK: patch OK: piuparts [4.3-5] 9d14502001 Bug #50922: ppp 2.4.7-1+4+deb9u1 doc/errata/staging/ppp.yaml | 13 +++++++++++++ 1 file changed, 13 insertions(+)
<http://errata.software-univention.de/ucs/4.3/651.html>