Hello,

I need to check the following security issue on my ppp client machine (linux)

-eap.c in pppd in ppp 2.4.2 through 2.4.8 has an rhostname buffer overflow in the eap_request and eap_response functions.

I'm using pppd 2.4.5.

Unfortunately no useful details is available on forums regarding this.

The idea is to have a reproduction scenario (test, tool, commands, setup) to reproduce this problem.

If reproduced, I'llupgrade my pppd daemon to the latest version (containing the fix) and redo the same check to confirm.

Any useful information is welcome.

THANKS FOR YOUR HELP

Might help to know what Linux distro you are using. Ideally the distro will push out an update for you to download, or you can check if they patched the 2.4.5 version with the fix.

I'm using linux special edition for embedded device (kernel 4.1), pppd daemon 4.5

Looks like it is just changing a line in the source; https://github.com/paulusmack/ppp/co...77fe6787575426
You could make the change in source and recompile, but coming up with a test would, as you noted, need more info about the problem.

Thanks for the information.
I rather need a test scenario (setup client/server, sending packets) in order to reproduce the issue
The goal is to have a reproduction setup : packets sto sent to pppd in order to get this problem
any help is welcome

Given CVE-2020-8597 then has a FULLDISC link leading to further bug simulation information.
The last also states:
LQ is not for developing exploits; there are other places on the internet.