eap.c in pppd in ppp 2.4.2 through 2.4.8 has an rhostname buffer overflow in the eap_request and eap_response functions.
2.4.7-1+2ubuntu1.16.04.22.4.7-2+2ubuntu1.22.4.7-2+4.1ubuntu52.4.5-5.1ubuntu2.3+esm12.1.2+dfsg1-4ubuntu0.1~esm1Exploitability
AV:NAC:LPR:NUI:NScope
S:UImpact
C:HI:HA:HCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H