Test Kennung:	1.3.6.1.4.1.25623.1.0.883194
Kategorie:	CentOS Local Security Checks
Titel:	CentOS: Security Advisory for ppp (CESA-2020:0630)
Zusammenfassung:	The remote host is missing an update for the 'ppp'; package(s) announced via the CESA-2020:0630 advisory.
Beschreibung:	Summary: The remote host is missing an update for the 'ppp' package(s) announced via the CESA-2020:0630 advisory. Vulnerability Insight: The ppp packages contain the Point-to-Point Protocol (PPP) daemon and documentation for PPP support. The PPP protocol provides a method for transmitting datagrams over serial point-to-point links. PPP is usually used to dial in to an Internet Service Provider (ISP) or other organization over a modem and phone line. Security Fix(es): * ppp: Buffer overflow in the eap_request and eap_response functions in eap.c (CVE-2020-8597) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Affected Software/OS: 'ppp' package(s) on CentOS 7. Solution: Please install the updated package(s). CVSS Score: 7.5 CVSS Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P
Querverweis:	Common Vulnerability Exposure (CVE) ID: CVE-2020-8597 CERT/CC vulnerability note: VU#782301 https://www.kb.cert.org/vuls/id/782301 Debian Security Information: DSA-4632 (Google Search) https://www.debian.org/security/2020/dsa-4632 https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/YOFDAIOWSWPG732ASYUZNINMXDHY4APE/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/UNJNHWOO4XF73M2W56ILZUY4JQG3JXIR/ http://seclists.org/fulldisclosure/2020/Mar/6 https://security.gentoo.org/glsa/202003-19 http://packetstormsecurity.com/files/156662/pppd-2.4.8-Buffer-Overflow.html http://packetstormsecurity.com/files/156802/pppd-2.4.8-Buffer-Overflow.html https://cert-portal.siemens.com/productcert/pdf/ssa-809841.pdf https://github.com/paulusmack/ppp/commit/8d7970b8f3db727fe798b65f3377fe6787575426 https://us-cert.cisa.gov/ics/advisories/icsa-20-224-04 https://lists.debian.org/debian-lts-announce/2020/02/msg00005.html RedHat Security Advisories: RHSA-2020:0630 https://access.redhat.com/errata/RHSA-2020:0630 RedHat Security Advisories: RHSA-2020:0631 https://access.redhat.com/errata/RHSA-2020:0631 RedHat Security Advisories: RHSA-2020:0633 https://access.redhat.com/errata/RHSA-2020:0633 RedHat Security Advisories: RHSA-2020:0634 https://access.redhat.com/errata/RHSA-2020:0634 SuSE Security Announcement: openSUSE-SU-2020:0286 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2020-03/msg00006.html https://usn.ubuntu.com/4288-1/ https://usn.ubuntu.com/4288-2/
Copyright	Copyright (C) 2020 Greenbone Networks GmbH

Dies ist nur einer von 99761 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus. Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.