In OpenBSD 7.3 before errata 016, npppd(8) could crash by a l2tp message which has an AVP (Attribute-Value Pair) with wrong length.
2024-03-01T17:15:07.257
2025-10-10T17:46:02.627
Analyzed
9119a7d8-5eab-497f-8521-727c672e3725
CVSSv3.1: 7.5 (HIGH)
| Type | Vendor | Product | Version/Range | Vulnerable? |
|---|---|---|---|---|
| Operating System | openbsd | openbsd | < 7.3 | Yes |
| Operating System | openbsd | openbsd | 7.3 | Yes |
| Operating System | openbsd | openbsd | 7.3 | Yes |
| Operating System | openbsd | openbsd | 7.3 | Yes |
| Operating System | openbsd | openbsd | 7.3 | Yes |
| Operating System | openbsd | openbsd | 7.3 | Yes |
| Operating System | openbsd | openbsd | 7.3 | Yes |
| Operating System | openbsd | openbsd | 7.3 | Yes |
| Operating System | openbsd | openbsd | 7.3 | Yes |
| Operating System | openbsd | openbsd | 7.3 | Yes |
| Operating System | openbsd | openbsd | 7.3 | Yes |
| Operating System | openbsd | openbsd | 7.3 | Yes |
| Operating System | openbsd | openbsd | 7.3 | Yes |
| Operating System | openbsd | openbsd | 7.3 | Yes |
| Operating System | openbsd | openbsd | 7.3 | Yes |
| Operating System | openbsd | openbsd | 7.3 | Yes |
| Operating System | openbsd | openbsd | 7.3 | Yes |