You are here
Home > Preporuke > Sigurnosni nedostatak programskog paketa ppp

Sigurnosni nedostatak programskog paketa ppp

  • Detalji os-a: WN7
  • Važnost: IMP
  • Operativni sustavi: L
  • Kategorije: LFE

Fedora Update Notification
2014-08-15 01:48:37

Name : ppp
Product : Fedora 19
Version : 2.4.5
Release : 33.fc19
Summary : The Point-to-Point Protocol daemon
Description :
The ppp package contains the PPP (Point-to-Point Protocol) daemon and
documentation for PPP support. The PPP protocol provides a method for
transmitting datagrams over serial point-to-point links. PPP is
usually used to dial in to an ISP (Internet Service Provider) or other
organization over a modem and phone line.

Update Information:

Security fix for CVE-2014-3158

* Tue Aug 12 2014 Michal Sekletar <> – 2.4.5-33
– Fix for CVE-2014-3158
* Thu Aug 1 2013 Michal Sekletar <> – 2.4.5-32
– fix post installation scriptlet
* Tue Jul 30 2013 Michal Sekletar <> – 2.4.5-31
– don’t ship /var/lock/ppp in rpm payload and create it in %post instead
– fix installation of tmpfiles.d configuration
– enable hardened build
– fix bogus dates in changelog
– compile all binaries with hardening flags
* Thu Jul 4 2013 Michal Sekletar <> – 2.4.5-30
– fix possible NULL pointer dereferencing

[ 1 ] Bug #1128748 – CVE-2014-3158 ppp: integer overflow in option parsing

This update can be installed with the “yum” update program. Use
su -c ‘yum update ppp’ at the command line.
For more information, refer to “Managing Software with yum”,
available at

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
package-announce mailing list

AutorMarko Stanec
Cert idNCERT-REF-2014-09-0006-ADV
More in Preporuke
Sigurnosni nedostatak programskog paketa pixman

Otkriven je sigurnosni nedostatak u programskom paketu pixman za operacijski sustav Fedora. Otkriveni nedostatak potencijalnim napadačima omogućuje izvođenje napada uskraćivanja...