CVE-2002-0854 — Improper Restriction of Operations within the Bounds of a Memory Buffer in Linux

3 documents3 sources

Severity

7.2HIGHNVD

EPSS

0.1%

top 80.33%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Suse Linux

Timeline

PublishedSep 5

Latest updateApr 30

Description

Buffer overflows in ISDN Point to Point Protocol (PPP) daemon (ipppd) in the i4l package on SuSE 7.3, 8.0, and possibly other operating systems, may allow local users to gain privileges.

CVSS vector

AV:L/AC:L/C:C/I:C/A:CExploitability: 3.9 | Impact: 10.0

Affected Packages1 packages

▶NVDsuse/suse_linux7.3, 8.0+1

🔴Vulnerability Details

GHSA

GHSA-rm4g-wh53-mp9c: Buffer overflows in ISDN Point to Point Protocol (PPP) daemon (ipppd) in the i4l package on SuSE 7↗2022-04-30

▶

CVEList

CVE-2002-0854: Buffer overflows in ISDN Point to Point Protocol (PPP) daemon (ipppd) in the i4l package on SuSE 7↗2002-08-14

▶