From ${URL} : Upstream released ppp-2.4.7 which fixes a potential security vulnerability: http://marc.info/?l=linux-ppp&m=140764978420764 There's not much technical details about this issue at this time. Upstream commit: https://github.com/paulusmack/ppp/commit/7658e8257183f062dc01f87969c140707c7e52cb @maintainer(s): after the bump, in case we need to stabilize the package, please let us know if it is ready for the stabilization or not.
+*ppp-2.4.7 (12 Aug 2014) + + 12 Aug 2014; Lars Wendler <polynomial-c@gentoo.org> +ppp-2.4.7.ebuild: + Security bump (bug #519650). +
Thanks for the bump Arches, please test and mark stable =net-dialup/ppp-2.4.7 Target keywords: alpha amd64 arm hppa ia64 ppc ppc64 sparc x86
amd64 stable
x86 stable
Stable for HPPA.
ia64 stable
ppc64 stable
alpha/arm/sparc stable
ppc stable. Maintainer(s), please cleanup. Security, please add it to the existing request, or file a new one.
New GLSA request filed
I have masked vulnerable version for now, so cleanup is done. After some amount of time i will purge them and remove the mask.
Not sure if this is relevant, but on Sabayon Linux I'm unable to connect to the PPTP VPN and found this in journalctl: pppd[2903]: Plugin /usr/lib64/pppd/2.4.5/nm-pptp-pppd-plugin.so is for pppd version 2.4.6, this is 2.4.7 equery gives this: # equery l -op net-dialup/ppp * Searching for ppp in net-dialup ... [-P-] [M ] net-dialup/ppp-2.4.4-r25:0 [-P-] [M ] net-dialup/ppp-2.4.5-r3:0 [-P-] [M ] net-dialup/ppp-2.4.6-r3:0/2.4.6 [IP-] [ ] net-dialup/ppp-2.4.7:0/2.4.7 # equery l -op networkmanager * Searching for networkmanager ... [-P-] [M ] net-misc/networkmanager-0.9.6.4:0 [-P-] [M ] net-misc/networkmanager-0.9.8.8:0 [I-O] [ ] net-misc/networkmanager-0.9.8.10-r1:0 # equery l -op networkmanager-pptp * Searching for networkmanager-pptp ... [IP-] [ ] net-misc/networkmanager-pptp-0.9.8.4:0 # equo query belongs /usr/lib64/pppd/2.4.5/nm-pptp-pppd-plugin.so ╠ @@ Ricerca Appartenenza ╠ @@ Pacchetto: net-misc/networkmanager-pptp-0.9.8.4 branch: 5, [__system__] ╠ Installato: versione: 0.9.8.4 ~ tag: NoTag ~ revisione: 2 ╠ Slot: 0 ╠ Homepage: http://www.gnome.org/projects/NetworkManager/ ╠ Descrizione: NetworkManager PPTP plugin ╠ Licenza: GPL-2+ ╠ Keyword: /usr/lib64/pppd/2.4.5/nm-pptp-pppd-plugin.so ╠ Trovati: 1 voce So I can't upgrade networkmanager nor networkmanager-pptp to any later version and the only option I got left was downgrade ppp to 2.4.6. Not sure how the masking/unmasking is managed in Sabayon, but I thought this information could be useful for the upstream. Hope it helps.
(In reply to King_DuckZ from comment #12) > Not sure if this is relevant, but on Sabayon Linux I'm unable to connect to > the PPTP VPN and found this in journalctl: > > pppd[2903]: Plugin /usr/lib64/pppd/2.4.5/nm-pptp-pppd-plugin.so is for pppd > version 2.4.6, this is 2.4.7 Not relevant to this bug, but possibly related to bug #519986
CVE-2014-3158 (http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-3158): Integer overflow in the getword function in options.c in pppd in Paul's PPP Package (ppp) before 2.4.7 allows attackers to "access privileged options" via a long word in an options file, which triggers a heap-based buffer overflow that "[corrupts] security-relevant variables."
This issue was resolved and addressed in GLSA 201412-19 at http://security.gentoo.org/glsa/glsa-201412-19.xml by GLSA coordinator Sean Amoss (ackle).
(In reply to Sergey Popov from comment #11) > I have masked vulnerable version for now, so cleanup is done. After some > amount of time i will purge them and remove the mask. It's been more than a year, probably safe to drop the vulnerable versions?
