Bug #12373: Update mpd5 to address vulnerabilities in < 5.9_2 - pfSense - pfSense bugtracker

Actions

Copy link

Bug #12373

closed

Update mpd5 to address vulnerabilities in < 5.9_2

Added by Viktor Gurov about 3 years ago. Updated almost 3 years ago.

Status:

Resolved

Priority:

Normal

Assignee:

Category:

Operating System

Target version:

2.6.0

Start date:

Due date:

% Done:

Estimated time:

Plus Target Version:

22.01

Release Notes:

Default

Affected Version:

Affected Architecture:

Description

https://vuxml.freebsd.org/freebsd/f55921aa-10c9-11ec-8647-00e0670f2660.html:

Version 5.9_2 contains security fix for PPPoE servers. Insufficient validation of incoming PPPoE Discovery request specially crafted by unauthenticated user might lead to unexpected termination of the process. The problem affects mpd versions since 5.0. Installations not using PPPoE server configuration were not affected.

pfSense-2.6.0.a.20210914.0500 still uses mpd5 5.9_1

History
Notes
Property changes

Actions

Copy link

Also available in: Atom PDF

Project

General

Profile

pfSense

Custom queries

Bug #12373

Update mpd5 to address vulnerabilities in < 5.9_2

Updated by Viktor Gurov almost 3 years ago

Updated by Jim Pingle almost 3 years ago

Updated by Jim Pingle almost 3 years ago