AZL-44211

See a problem?

Import Source

https://github.com/microsoft/AzureLinuxVulnerabilityData/blob/main/osv/AZL-44211.json

JSON Data

https://api.osv.dev/v1/vulns/AZL-44211

Upstream

CVE-2015-3310

Published

2015-04-24T14:59:11Z

Modified

2026-04-21T04:31:19.581868Z

Summary

CVE-2015-3310 affecting package ppp for versions less than 2.5.0-1

Details

Buffer overflow in the rc_mksid function in plugins/radius/util.c in Paul's PPP Package (ppp) 2.4.6 and earlier, when the PID for pppd is greater than 65535, allows remote attackers to cause a denial of service (crash) via a start accounting message to the RADIUS server.

References

https://nvd.nist.gov/vuln/detail/CVE-2015-3310

Affected packages

Azure Linux:3 / ppp

Package

Name: ppp
Purl: pkg:rpm/azure-linux/ppp

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

2.5.0-1

Database specific

source

"https://github.com/microsoft/AzureLinuxVulnerabilityData/blob/main/osv/AZL-44211.json"