Red Hat Product Errata RHSA-2020:0630 - Security Advisory

Issued:: 2020-02-27
Updated:: 2020-02-27

RHSA-2020:0630 - Security Advisory

Overview
Updated Packages

Synopsis

Important: ppp security update

Type/Severity

Security Advisory: Important

Topic

An update for ppp is now available for Red Hat Enterprise Linux 7.

Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.

Description

The ppp packages contain the Point-to-Point Protocol (PPP) daemon and documentation for PPP support. The PPP protocol provides a method for transmitting datagrams over serial point-to-point links. PPP is usually used to dial in to an Internet Service Provider (ISP) or other organization over a modem and phone line.

Security Fix(es):

ppp: Buffer overflow in the eap_request and eap_response functions in eap.c (CVE-2020-8597)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Solution

For details on how to apply this update, which includes the changes described in this advisory, refer to:

https://access.redhat.com/articles/11258

Affected Products

Red Hat Enterprise Linux Server 7 x86_64
Red Hat Enterprise Linux for x86_64 - Extended Update Support 7.7 x86_64
Red Hat Enterprise Linux Workstation 7 x86_64
Red Hat Enterprise Linux Desktop 7 x86_64
Red Hat Enterprise Linux for IBM z Systems 7 s390x
Red Hat Enterprise Linux for IBM z Systems - Extended Update Support 7.7 s390x
Red Hat Enterprise Linux for Power, big endian 7 ppc64
Red Hat Enterprise Linux for Power, big endian - Extended Update Support 7.7 ppc64
Red Hat Enterprise Linux for Scientific Computing 7 x86_64
Red Hat Enterprise Linux EUS Compute Node 7.7 x86_64
Red Hat Enterprise Linux Server - AUS 7.7 x86_64
Red Hat Enterprise Linux for Power, little endian 7 ppc64le
Red Hat Enterprise Linux for Power, little endian - Extended Update Support 7.7 ppc64le
Red Hat Enterprise Linux Server - TUS 7.7 x86_64
Red Hat Enterprise Linux Server (for IBM Power LE) - Update Services for SAP Solutions 7.7 ppc64le
Red Hat Enterprise Linux Server - Update Services for SAP Solutions 7.7 x86_64

Fixes

BZ - 1800727 - CVE-2020-8597 ppp: Buffer overflow in the eap_request and eap_response functions in eap.c

CVEs

CVE-2020-8597

References

https://access.redhat.com/security/updates/classification/#important

Note: More recent versions of these packages may be available. Click a package name for more details.

Red Hat Enterprise Linux Server 7

SRPM
ppp-2.4.5-34.el7_7.src.rpm	SHA-256: c8b3b49e4c7281634e7c5c1dbef124fa96a141cf972b90af3c0039a7964ab70e
x86_64
ppp-2.4.5-34.el7_7.x86_64.rpm	SHA-256: 6d0df821f6dfec2105c069973078358ea6f3765122b77dacd91bbfd9f6a749b9
ppp-debuginfo-2.4.5-34.el7_7.i686.rpm	SHA-256: 31484fae3ac600ef3b7ee386479f1e55108217efc2d4c3ec31c427ae97e2de6d
ppp-debuginfo-2.4.5-34.el7_7.x86_64.rpm	SHA-256: 554739e653ed327964a98d1e1cb9887bfc55192e2a62e96ed150829a56349b53
ppp-debuginfo-2.4.5-34.el7_7.x86_64.rpm	SHA-256: 554739e653ed327964a98d1e1cb9887bfc55192e2a62e96ed150829a56349b53
ppp-devel-2.4.5-34.el7_7.i686.rpm	SHA-256: 01c498ad15ba74b67e702cd13df0db6ffb7bd4da1b7c040e5c1fa41e3ea0251d
ppp-devel-2.4.5-34.el7_7.x86_64.rpm	SHA-256: 0e6ef3f9b82d2d1178c0c1bdea9b8a1b64a88f810e1bf9380b45220db77f3f1b

Red Hat Enterprise Linux for x86_64 - Extended Update Support 7.7

SRPM
ppp-2.4.5-34.el7_7.src.rpm	SHA-256: c8b3b49e4c7281634e7c5c1dbef124fa96a141cf972b90af3c0039a7964ab70e
x86_64
ppp-2.4.5-34.el7_7.x86_64.rpm	SHA-256: 6d0df821f6dfec2105c069973078358ea6f3765122b77dacd91bbfd9f6a749b9
ppp-debuginfo-2.4.5-34.el7_7.i686.rpm	SHA-256: 31484fae3ac600ef3b7ee386479f1e55108217efc2d4c3ec31c427ae97e2de6d
ppp-debuginfo-2.4.5-34.el7_7.x86_64.rpm	SHA-256: 554739e653ed327964a98d1e1cb9887bfc55192e2a62e96ed150829a56349b53
ppp-debuginfo-2.4.5-34.el7_7.x86_64.rpm	SHA-256: 554739e653ed327964a98d1e1cb9887bfc55192e2a62e96ed150829a56349b53
ppp-devel-2.4.5-34.el7_7.i686.rpm	SHA-256: 01c498ad15ba74b67e702cd13df0db6ffb7bd4da1b7c040e5c1fa41e3ea0251d
ppp-devel-2.4.5-34.el7_7.x86_64.rpm	SHA-256: 0e6ef3f9b82d2d1178c0c1bdea9b8a1b64a88f810e1bf9380b45220db77f3f1b

Red Hat Enterprise Linux Server - AUS 7.7

SRPM
ppp-2.4.5-34.el7_7.src.rpm	SHA-256: c8b3b49e4c7281634e7c5c1dbef124fa96a141cf972b90af3c0039a7964ab70e
x86_64
ppp-2.4.5-34.el7_7.x86_64.rpm	SHA-256: 6d0df821f6dfec2105c069973078358ea6f3765122b77dacd91bbfd9f6a749b9
ppp-debuginfo-2.4.5-34.el7_7.i686.rpm	SHA-256: 31484fae3ac600ef3b7ee386479f1e55108217efc2d4c3ec31c427ae97e2de6d
ppp-debuginfo-2.4.5-34.el7_7.x86_64.rpm	SHA-256: 554739e653ed327964a98d1e1cb9887bfc55192e2a62e96ed150829a56349b53
ppp-debuginfo-2.4.5-34.el7_7.x86_64.rpm	SHA-256: 554739e653ed327964a98d1e1cb9887bfc55192e2a62e96ed150829a56349b53
ppp-devel-2.4.5-34.el7_7.i686.rpm	SHA-256: 01c498ad15ba74b67e702cd13df0db6ffb7bd4da1b7c040e5c1fa41e3ea0251d
ppp-devel-2.4.5-34.el7_7.x86_64.rpm	SHA-256: 0e6ef3f9b82d2d1178c0c1bdea9b8a1b64a88f810e1bf9380b45220db77f3f1b

Red Hat Enterprise Linux Workstation 7

SRPM
ppp-2.4.5-34.el7_7.src.rpm	SHA-256: c8b3b49e4c7281634e7c5c1dbef124fa96a141cf972b90af3c0039a7964ab70e
x86_64
ppp-2.4.5-34.el7_7.x86_64.rpm	SHA-256: 6d0df821f6dfec2105c069973078358ea6f3765122b77dacd91bbfd9f6a749b9
ppp-debuginfo-2.4.5-34.el7_7.i686.rpm	SHA-256: 31484fae3ac600ef3b7ee386479f1e55108217efc2d4c3ec31c427ae97e2de6d
ppp-debuginfo-2.4.5-34.el7_7.x86_64.rpm	SHA-256: 554739e653ed327964a98d1e1cb9887bfc55192e2a62e96ed150829a56349b53
ppp-debuginfo-2.4.5-34.el7_7.x86_64.rpm	SHA-256: 554739e653ed327964a98d1e1cb9887bfc55192e2a62e96ed150829a56349b53
ppp-devel-2.4.5-34.el7_7.i686.rpm	SHA-256: 01c498ad15ba74b67e702cd13df0db6ffb7bd4da1b7c040e5c1fa41e3ea0251d
ppp-devel-2.4.5-34.el7_7.x86_64.rpm	SHA-256: 0e6ef3f9b82d2d1178c0c1bdea9b8a1b64a88f810e1bf9380b45220db77f3f1b

Red Hat Enterprise Linux Desktop 7

SRPM
ppp-2.4.5-34.el7_7.src.rpm	SHA-256: c8b3b49e4c7281634e7c5c1dbef124fa96a141cf972b90af3c0039a7964ab70e
x86_64
ppp-2.4.5-34.el7_7.x86_64.rpm	SHA-256: 6d0df821f6dfec2105c069973078358ea6f3765122b77dacd91bbfd9f6a749b9
ppp-debuginfo-2.4.5-34.el7_7.i686.rpm	SHA-256: 31484fae3ac600ef3b7ee386479f1e55108217efc2d4c3ec31c427ae97e2de6d
ppp-debuginfo-2.4.5-34.el7_7.x86_64.rpm	SHA-256: 554739e653ed327964a98d1e1cb9887bfc55192e2a62e96ed150829a56349b53
ppp-debuginfo-2.4.5-34.el7_7.x86_64.rpm	SHA-256: 554739e653ed327964a98d1e1cb9887bfc55192e2a62e96ed150829a56349b53
ppp-devel-2.4.5-34.el7_7.i686.rpm	SHA-256: 01c498ad15ba74b67e702cd13df0db6ffb7bd4da1b7c040e5c1fa41e3ea0251d
ppp-devel-2.4.5-34.el7_7.x86_64.rpm	SHA-256: 0e6ef3f9b82d2d1178c0c1bdea9b8a1b64a88f810e1bf9380b45220db77f3f1b

Red Hat Enterprise Linux for IBM z Systems 7

SRPM
ppp-2.4.5-34.el7_7.src.rpm	SHA-256: c8b3b49e4c7281634e7c5c1dbef124fa96a141cf972b90af3c0039a7964ab70e
s390x
ppp-2.4.5-34.el7_7.s390x.rpm	SHA-256: 069665928652bdc0f1581fcc90128c865c3780b4c28bb9698c4579961064e6fc
ppp-debuginfo-2.4.5-34.el7_7.s390.rpm	SHA-256: 72f682c345dc19d3b8e2544b80001d478249177ac138cd8573f17d829b0f64e0
ppp-debuginfo-2.4.5-34.el7_7.s390x.rpm	SHA-256: 0fa3856516e1348d100fcc791b238279bd3cdb9c141a6140780893f1452ab1a8
ppp-debuginfo-2.4.5-34.el7_7.s390x.rpm	SHA-256: 0fa3856516e1348d100fcc791b238279bd3cdb9c141a6140780893f1452ab1a8
ppp-devel-2.4.5-34.el7_7.s390.rpm	SHA-256: 97ac3c403090e4ec14bb3b7779ab67a3f07ff0e1e4385afac6a811f45c9050ed
ppp-devel-2.4.5-34.el7_7.s390x.rpm	SHA-256: 151ced23bbf4388a7c11c87293b8398c7c5893d1132a4334e3b7e8ec18a0bab1

Red Hat Enterprise Linux for IBM z Systems - Extended Update Support 7.7

SRPM
ppp-2.4.5-34.el7_7.src.rpm	SHA-256: c8b3b49e4c7281634e7c5c1dbef124fa96a141cf972b90af3c0039a7964ab70e
s390x
ppp-2.4.5-34.el7_7.s390x.rpm	SHA-256: 069665928652bdc0f1581fcc90128c865c3780b4c28bb9698c4579961064e6fc
ppp-debuginfo-2.4.5-34.el7_7.s390.rpm	SHA-256: 72f682c345dc19d3b8e2544b80001d478249177ac138cd8573f17d829b0f64e0
ppp-debuginfo-2.4.5-34.el7_7.s390x.rpm	SHA-256: 0fa3856516e1348d100fcc791b238279bd3cdb9c141a6140780893f1452ab1a8
ppp-debuginfo-2.4.5-34.el7_7.s390x.rpm	SHA-256: 0fa3856516e1348d100fcc791b238279bd3cdb9c141a6140780893f1452ab1a8
ppp-devel-2.4.5-34.el7_7.s390.rpm	SHA-256: 97ac3c403090e4ec14bb3b7779ab67a3f07ff0e1e4385afac6a811f45c9050ed
ppp-devel-2.4.5-34.el7_7.s390x.rpm	SHA-256: 151ced23bbf4388a7c11c87293b8398c7c5893d1132a4334e3b7e8ec18a0bab1

Red Hat Enterprise Linux for Power, big endian 7

SRPM
ppp-2.4.5-34.el7_7.src.rpm	SHA-256: c8b3b49e4c7281634e7c5c1dbef124fa96a141cf972b90af3c0039a7964ab70e
ppc64
ppp-2.4.5-34.el7_7.ppc64.rpm	SHA-256: 53b4fa8bd5bb7ac66551f7f1c0adbc1437902170293e23a7fdac67b8944d53dd
ppp-debuginfo-2.4.5-34.el7_7.ppc.rpm	SHA-256: 6f86739bf0dc7b19a6789ec97e4d43254bfa49a28d6e193eb286b1d576453fbd
ppp-debuginfo-2.4.5-34.el7_7.ppc64.rpm	SHA-256: 80b02393b9cd515902d8cb2b1b089af9b3c740da92335cc6f7d114ae8208b628
ppp-debuginfo-2.4.5-34.el7_7.ppc64.rpm	SHA-256: 80b02393b9cd515902d8cb2b1b089af9b3c740da92335cc6f7d114ae8208b628
ppp-devel-2.4.5-34.el7_7.ppc.rpm	SHA-256: f463fa8d32f5d836a676cfb9c26d12cb9e4a33f0842bef0c40900c7a19852272
ppp-devel-2.4.5-34.el7_7.ppc64.rpm	SHA-256: 341dac654eac3ee070267dcc7019d2a62d04bc3378eba0e99d2bc5da88dae276

Red Hat Enterprise Linux for Power, big endian - Extended Update Support 7.7

SRPM
ppp-2.4.5-34.el7_7.src.rpm	SHA-256: c8b3b49e4c7281634e7c5c1dbef124fa96a141cf972b90af3c0039a7964ab70e
ppc64
ppp-2.4.5-34.el7_7.ppc64.rpm	SHA-256: 53b4fa8bd5bb7ac66551f7f1c0adbc1437902170293e23a7fdac67b8944d53dd
ppp-debuginfo-2.4.5-34.el7_7.ppc.rpm	SHA-256: 6f86739bf0dc7b19a6789ec97e4d43254bfa49a28d6e193eb286b1d576453fbd
ppp-debuginfo-2.4.5-34.el7_7.ppc64.rpm	SHA-256: 80b02393b9cd515902d8cb2b1b089af9b3c740da92335cc6f7d114ae8208b628
ppp-debuginfo-2.4.5-34.el7_7.ppc64.rpm	SHA-256: 80b02393b9cd515902d8cb2b1b089af9b3c740da92335cc6f7d114ae8208b628
ppp-devel-2.4.5-34.el7_7.ppc.rpm	SHA-256: f463fa8d32f5d836a676cfb9c26d12cb9e4a33f0842bef0c40900c7a19852272
ppp-devel-2.4.5-34.el7_7.ppc64.rpm	SHA-256: 341dac654eac3ee070267dcc7019d2a62d04bc3378eba0e99d2bc5da88dae276

Red Hat Enterprise Linux for Scientific Computing 7

SRPM
ppp-2.4.5-34.el7_7.src.rpm	SHA-256: c8b3b49e4c7281634e7c5c1dbef124fa96a141cf972b90af3c0039a7964ab70e
x86_64
ppp-2.4.5-34.el7_7.x86_64.rpm	SHA-256: 6d0df821f6dfec2105c069973078358ea6f3765122b77dacd91bbfd9f6a749b9
ppp-debuginfo-2.4.5-34.el7_7.i686.rpm	SHA-256: 31484fae3ac600ef3b7ee386479f1e55108217efc2d4c3ec31c427ae97e2de6d
ppp-debuginfo-2.4.5-34.el7_7.x86_64.rpm	SHA-256: 554739e653ed327964a98d1e1cb9887bfc55192e2a62e96ed150829a56349b53
ppp-debuginfo-2.4.5-34.el7_7.x86_64.rpm	SHA-256: 554739e653ed327964a98d1e1cb9887bfc55192e2a62e96ed150829a56349b53
ppp-devel-2.4.5-34.el7_7.i686.rpm	SHA-256: 01c498ad15ba74b67e702cd13df0db6ffb7bd4da1b7c040e5c1fa41e3ea0251d
ppp-devel-2.4.5-34.el7_7.x86_64.rpm	SHA-256: 0e6ef3f9b82d2d1178c0c1bdea9b8a1b64a88f810e1bf9380b45220db77f3f1b

Red Hat Enterprise Linux EUS Compute Node 7.7

SRPM
ppp-2.4.5-34.el7_7.src.rpm	SHA-256: c8b3b49e4c7281634e7c5c1dbef124fa96a141cf972b90af3c0039a7964ab70e
x86_64
ppp-2.4.5-34.el7_7.x86_64.rpm	SHA-256: 6d0df821f6dfec2105c069973078358ea6f3765122b77dacd91bbfd9f6a749b9
ppp-debuginfo-2.4.5-34.el7_7.i686.rpm	SHA-256: 31484fae3ac600ef3b7ee386479f1e55108217efc2d4c3ec31c427ae97e2de6d
ppp-debuginfo-2.4.5-34.el7_7.x86_64.rpm	SHA-256: 554739e653ed327964a98d1e1cb9887bfc55192e2a62e96ed150829a56349b53
ppp-debuginfo-2.4.5-34.el7_7.x86_64.rpm	SHA-256: 554739e653ed327964a98d1e1cb9887bfc55192e2a62e96ed150829a56349b53
ppp-devel-2.4.5-34.el7_7.i686.rpm	SHA-256: 01c498ad15ba74b67e702cd13df0db6ffb7bd4da1b7c040e5c1fa41e3ea0251d
ppp-devel-2.4.5-34.el7_7.x86_64.rpm	SHA-256: 0e6ef3f9b82d2d1178c0c1bdea9b8a1b64a88f810e1bf9380b45220db77f3f1b

Red Hat Enterprise Linux for Power, little endian 7

SRPM
ppp-2.4.5-34.el7_7.src.rpm	SHA-256: c8b3b49e4c7281634e7c5c1dbef124fa96a141cf972b90af3c0039a7964ab70e
ppc64le
ppp-2.4.5-34.el7_7.ppc64le.rpm	SHA-256: 9056e5acb7ecfa322582a2e348ebe7e9d37c0c7adc6daeadea066873b84b783a
ppp-debuginfo-2.4.5-34.el7_7.ppc64le.rpm	SHA-256: 04cac02f09764fce9da700c6c2860df1bdad14c91fbcb1fe425766ed60ca4874
ppp-debuginfo-2.4.5-34.el7_7.ppc64le.rpm	SHA-256: 04cac02f09764fce9da700c6c2860df1bdad14c91fbcb1fe425766ed60ca4874
ppp-devel-2.4.5-34.el7_7.ppc64le.rpm	SHA-256: 1fcca729bc2ef1bf935188cd729113fa75805f055b74952109bb598713597254

Red Hat Enterprise Linux for Power, little endian - Extended Update Support 7.7

SRPM
ppp-2.4.5-34.el7_7.src.rpm	SHA-256: c8b3b49e4c7281634e7c5c1dbef124fa96a141cf972b90af3c0039a7964ab70e
ppc64le
ppp-2.4.5-34.el7_7.ppc64le.rpm	SHA-256: 9056e5acb7ecfa322582a2e348ebe7e9d37c0c7adc6daeadea066873b84b783a
ppp-debuginfo-2.4.5-34.el7_7.ppc64le.rpm	SHA-256: 04cac02f09764fce9da700c6c2860df1bdad14c91fbcb1fe425766ed60ca4874
ppp-debuginfo-2.4.5-34.el7_7.ppc64le.rpm	SHA-256: 04cac02f09764fce9da700c6c2860df1bdad14c91fbcb1fe425766ed60ca4874
ppp-devel-2.4.5-34.el7_7.ppc64le.rpm	SHA-256: 1fcca729bc2ef1bf935188cd729113fa75805f055b74952109bb598713597254

Red Hat Enterprise Linux Server - TUS 7.7

SRPM
ppp-2.4.5-34.el7_7.src.rpm	SHA-256: c8b3b49e4c7281634e7c5c1dbef124fa96a141cf972b90af3c0039a7964ab70e
x86_64
ppp-2.4.5-34.el7_7.x86_64.rpm	SHA-256: 6d0df821f6dfec2105c069973078358ea6f3765122b77dacd91bbfd9f6a749b9
ppp-debuginfo-2.4.5-34.el7_7.i686.rpm	SHA-256: 31484fae3ac600ef3b7ee386479f1e55108217efc2d4c3ec31c427ae97e2de6d
ppp-debuginfo-2.4.5-34.el7_7.x86_64.rpm	SHA-256: 554739e653ed327964a98d1e1cb9887bfc55192e2a62e96ed150829a56349b53
ppp-debuginfo-2.4.5-34.el7_7.x86_64.rpm	SHA-256: 554739e653ed327964a98d1e1cb9887bfc55192e2a62e96ed150829a56349b53
ppp-devel-2.4.5-34.el7_7.i686.rpm	SHA-256: 01c498ad15ba74b67e702cd13df0db6ffb7bd4da1b7c040e5c1fa41e3ea0251d
ppp-devel-2.4.5-34.el7_7.x86_64.rpm	SHA-256: 0e6ef3f9b82d2d1178c0c1bdea9b8a1b64a88f810e1bf9380b45220db77f3f1b

Red Hat Enterprise Linux Server (for IBM Power LE) - Update Services for SAP Solutions 7.7

SRPM
ppp-2.4.5-34.el7_7.src.rpm	SHA-256: c8b3b49e4c7281634e7c5c1dbef124fa96a141cf972b90af3c0039a7964ab70e
ppc64le
ppp-2.4.5-34.el7_7.ppc64le.rpm	SHA-256: 9056e5acb7ecfa322582a2e348ebe7e9d37c0c7adc6daeadea066873b84b783a
ppp-debuginfo-2.4.5-34.el7_7.ppc64le.rpm	SHA-256: 04cac02f09764fce9da700c6c2860df1bdad14c91fbcb1fe425766ed60ca4874
ppp-debuginfo-2.4.5-34.el7_7.ppc64le.rpm	SHA-256: 04cac02f09764fce9da700c6c2860df1bdad14c91fbcb1fe425766ed60ca4874
ppp-devel-2.4.5-34.el7_7.ppc64le.rpm	SHA-256: 1fcca729bc2ef1bf935188cd729113fa75805f055b74952109bb598713597254

Red Hat Enterprise Linux Server - Update Services for SAP Solutions 7.7

SRPM
ppp-2.4.5-34.el7_7.src.rpm	SHA-256: c8b3b49e4c7281634e7c5c1dbef124fa96a141cf972b90af3c0039a7964ab70e
x86_64
ppp-2.4.5-34.el7_7.x86_64.rpm	SHA-256: 6d0df821f6dfec2105c069973078358ea6f3765122b77dacd91bbfd9f6a749b9
ppp-debuginfo-2.4.5-34.el7_7.i686.rpm	SHA-256: 31484fae3ac600ef3b7ee386479f1e55108217efc2d4c3ec31c427ae97e2de6d
ppp-debuginfo-2.4.5-34.el7_7.x86_64.rpm	SHA-256: 554739e653ed327964a98d1e1cb9887bfc55192e2a62e96ed150829a56349b53
ppp-debuginfo-2.4.5-34.el7_7.x86_64.rpm	SHA-256: 554739e653ed327964a98d1e1cb9887bfc55192e2a62e96ed150829a56349b53
ppp-devel-2.4.5-34.el7_7.i686.rpm	SHA-256: 01c498ad15ba74b67e702cd13df0db6ffb7bd4da1b7c040e5c1fa41e3ea0251d
ppp-devel-2.4.5-34.el7_7.x86_64.rpm	SHA-256: 0e6ef3f9b82d2d1178c0c1bdea9b8a1b64a88f810e1bf9380b45220db77f3f1b

The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.