Test ID:	1.3.6.1.4.1.25623.1.0.703228
Category:	Debian Local Security Checks
Title:	Debian: Security Advisory (DSA-3228-1)
Summary:	The remote host is missing an update for the Debian 'ppp' package(s) announced via the DSA-3228-1 advisory.
Description:	Summary: The remote host is missing an update for the Debian 'ppp' package(s) announced via the DSA-3228-1 advisory. Vulnerability Insight: Emanuele Rocca discovered that ppp, a daemon implementing the Point-to-Point Protocol, was subject to a buffer overflow when communicating with a RADIUS server. This would allow unauthenticated users to cause a denial-of-service by crashing the daemon. For the stable distribution (wheezy), this problem has been fixed in version 2.4.5-5.1+deb7u2. For the upcoming stable distribution (jessie) and unstable distribution (sid), this problem has been fixed in version 2.4.6-3.1. We recommend that you upgrade your ppp packages. Affected Software/OS: 'ppp' package(s) on Debian 7. Solution: Please install the updated package(s). CVSS Score: 4.3 CVSS Vector: AV:N/AC:M/Au:N/C:N/I:N/A:P
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2015-3310 BugTraq ID: 74163 http://www.securityfocus.com/bid/74163 Debian Security Information: DSA-3228 (Google Search) http://www.debian.org/security/2015/dsa-3228 https://security.gentoo.org/glsa/201701-50 http://www.mandriva.com/security/advisories?name=MDVSA-2015:222 SuSE Security Announcement: openSUSE-SU-2015:2121 (Google Search) http://lists.opensuse.org/opensuse-updates/2015-11/msg00147.html http://www.ubuntu.com/usn/USN-2595-1
Copyright	Copyright (C) 2015 Greenbone AG

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.