SUSE-SU-2020:0489-1

HIGH8.6

Security update for ppp

Published Feb 26, 2020

Modified 6 years ago

Fix available

Details

Description of the patch:

This update for ppp fixes the following security issue:

CVE-2020-8597: Fixed a buffer overflow in the eap_request and eap_response functions (bsc#1162610).

Affected Packages

ppp

SUSE Enterprise Storage 6SUSE Linux Enterprise Desktop 15SUSE Linux Enterprise Desktop 15 SP1SUSE Linux Enterprise High Performance Computing 15SUSE Linux Enterprise High Performance Computing 15 SP1

Fixed in:

2.4.7-5.3.1

ppp-devel

SUSE Enterprise Storage 6SUSE Linux Enterprise Desktop 15SUSE Linux Enterprise Desktop 15 SP1SUSE Linux Enterprise High Performance Computing 15SUSE Linux Enterprise High Performance Computing 15 SP1

Fixed in:

2.4.7-5.3.1

References

ADVISORY

https://bugzilla.suse.com/1162610

ADVISORY

https://lists.suse.com/pipermail/sle-security-updates/2020-February/006530.html

ADVISORY

https://www.suse.com/security/cve/CVE-2020-8597/

WEB

https://www.suse.com/support/security/rating/

ADVISORY