Your submission was sent successfully! Close

CVE-2015-3310

Published: 16 April 2015

Buffer overflow in the rc_mksid function in plugins/radius/util.c in Paul's PPP Package (ppp) 2.4.6 and earlier, when the PID for pppd is greater than 65535, allows remote attackers to cause a denial of service (crash) via a start accounting message to the RADIUS server.

Priority

Medium

Status

Package Release Status
ppp
Launchpad, Ubuntu, Debian
lucid Ignored
(reached end-of-life)
precise
Released (2.4.5-5ubuntu1.2)
trusty
Released (2.4.5-5.1ubuntu2.2)
upstream
Released (2.4.6-3.1)
utopic
Released (2.4.5-5.1ubuntu3.2)
vivid Not vulnerable
(2.4.6-3.1ubuntu1)