--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2024-f0f2f19820
2024-01-13 18:12:15.064713
--------------------------------------------------------------------------------
Name : ppp
Product : Fedora 38
Version : 2.4.9
Release : 10.fc38
URL :
http://www.samba.org/ppp
Summary : The Point-to-Point Protocol daemon
Description :
The ppp package contains the PPP (Point-to-Point Protocol) daemon and
documentation for PPP support. The PPP protocol provides a method for
transmitting datagrams over serial point-to-point links. PPP is
usually used to dial in to an ISP (Internet Service Provider) or other
organization over a modem and phone line.
--------------------------------------------------------------------------------
Update Information:
Fixed improper validation of array index of the component pppdump
(CVE-2022-4603).
--------------------------------------------------------------------------------
ChangeLog:
* Thu Jan 4 2024 Jaroslav ��karvada <jskarvad(a)redhat.com> - 2.4.9-10
- Fixed improper validation of array index of the component pppdump
Resolves: CVE-2022-4603
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2255230 - CVE-2022-4603 ppp: improper validation of array index of the
component pppdump
https://bugzilla.redhat.com/show_bug.cgi?id=2255230
--------------------------------------------------------------------------------
This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2024-f0f2f19820' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------