https://live.paloaltonetworks.com/t5/general-topics/cve-2020-8597-is-it-applicable-for-palo-alto/m-p/317174#M81526 <P><SPAN>With the release of PAN-OS 9.0.1 Palo Alto Networks has a new Security Advisory site. &nbsp;Please see&nbsp;</SPAN><A href="https://securityadvisories.paloaltonetworks.com/" target="_self" rel="nofollow noopener noreferrer noopener noreferrer noopener noreferrer noopener noreferrer noopener noreferrer noopener noreferrer noopener noreferrer">https://securityadvisories.paloaltonetworks.com</A><SPAN>&nbsp;for details.</SPAN></P> <P>&nbsp;</P> <P>It does not appear that Palo Alto Networks devices are vulnerable to this specific advisory.</P> <P>I searched that site and&nbsp;did not find it.&nbsp;</P> <P>&nbsp;</P> <P>I would recommend that you search that site for all CVE's or visit:</P> <P><A href="https://live.paloaltonetworks.com/t5/PSIRT-Articles/tkb-p/PSIRT_Articles" target="_blank">https://live.paloaltonetworks.com/t5/PSIRT-Articles/tkb-p/PSIRT_Articles</A></P> <P>&nbsp;</P> <P>&nbsp;</P> Wed, 18 Mar 2020 23:17:21 GMT jdelio 2020-03-18T23:17:21Z https://live.paloaltonetworks.com/t5/general-topics/cve-2020-8597-is-it-applicable-for-palo-alto/m-p/316465#M81389 <P><STRONG>We have received a Critical Security Advisory related to Buffer Overflow Vulnerability in Point-to-Point Protocol Daemon (pppd).<BR />&nbsp;is applicable to our PaloAlto and Panorama Firewall devices.?<BR /><BR /><BR />Risk Advisory No CVE-2020-8597<BR />Advisory Name Buffer Overflow Vulnerability in Point-to-Point Protocol Daemon (pppd)<BR />Severity Critical<BR />Action Required Immediate<BR />Summary CVE-2020-8597<BR />CVE A new buffer overflow vulnerability has been discovered in pppd (Point to Point Protocol Daemon) versions 2.4.2 through 2.4.8. An unauthenticated remote attacker could cause memory corruption in the pppd process, which may allow for arbitrary code execution. System administrators are encouraged to update pppd software with the latest available patches in order to prevent vulnerability exploitation.<BR />Affected Products Buffer Overflow Vulnerability in Point-to-Point Protocol Daemon (pppd) versions 2.4.2 through 2.4.8 are vulnerable<BR />to CVE-2020-8597. This package is included in software products from different vendors. Please find below the list of confirmed affected vendors:<BR />• Cisco<BR />• Debian GNU/Linux<BR />• Fedora Project<BR />• NetBSD<BR />• OpenWRT<BR />• Red Hat<BR />• Sierra Wireless<BR />• SUSE Linux<BR />• Synology<BR />• TP-LINK<BR />• Ubuntu<BR />Recommendations It is recommended to update the pppd package with the latest available patches provided by each vendor. An authenticated attacker may still be able to exploit the vulnerability even if EAP is not enabled by sending unsolicited EAP packets to trigger<BR />the buffer overflow. If the package has been compiled from source, the latest software can be obtained<BR />from the pppd repository in Github:<BR />• <A href="https://github.com/paulusmack/ppp" target="_blank" rel="noopener">https://github.com/paulusmack/ppp</A><BR />• <A href="https://github.com/paulusmack/ppp/commit/8d7970b8f3db727fe798b65f33" target="_blank" rel="noopener">https://github.com/paulusmack/ppp/commit/8d7970b8f3db727fe798b65f33</A><BR />77fe6787575426<BR />For those using the lwIP (lightweight IP) package compiled from source with EAP<BR />enabled at compile time, the latest version is also available on Github:<BR />• <A href="http://git.savannah.nongnu.org/cgit/lwip.git" target="_blank" rel="noopener">http://git.savannah.nongnu.org/cgit/lwip.git</A><BR />• <A href="http://git.savannah.nongnu.org/cgit/lwip.git/commit/" target="_blank" rel="noopener">http://git.savannah.nongnu.org/cgit/lwip.git/commit/</A>?<BR />id=2ee3cbe69c6d2805e64e7cac2a1c1706e49ffd86<BR /><BR /></STRONG></P><P>&nbsp;</P><P><STRONG>Regards,</STRONG></P> Sun, 15 Mar 2020 06:47:03 GMT https://live.paloaltonetworks.com/t5/general-topics/cve-2020-8597-is-it-applicable-for-palo-alto/m-p/316465#M81389 CyberEye 2020-03-15T06:47:03Z https://live.paloaltonetworks.com/t5/general-topics/cve-2020-8597-is-it-applicable-for-palo-alto/m-p/317174#M81526 <P><SPAN>With the release of PAN-OS 9.0.1 Palo Alto Networks has a new Security Advisory site. &nbsp;Please see&nbsp;</SPAN><A href="https://securityadvisories.paloaltonetworks.com/" target="_self" rel="nofollow noopener noreferrer noopener noreferrer noopener noreferrer noopener noreferrer noopener noreferrer noopener noreferrer noopener noreferrer">https://securityadvisories.paloaltonetworks.com</A><SPAN>&nbsp;for details.</SPAN></P> <P>&nbsp;</P> <P>It does not appear that Palo Alto Networks devices are vulnerable to this specific advisory.</P> <P>I searched that site and&nbsp;did not find it.&nbsp;</P> <P>&nbsp;</P> <P>I would recommend that you search that site for all CVE's or visit:</P> <P><A href="https://live.paloaltonetworks.com/t5/PSIRT-Articles/tkb-p/PSIRT_Articles" target="_blank">https://live.paloaltonetworks.com/t5/PSIRT-Articles/tkb-p/PSIRT_Articles</A></P> <P>&nbsp;</P> <P>&nbsp;</P> Wed, 18 Mar 2020 23:17:21 GMT https://live.paloaltonetworks.com/t5/general-topics/cve-2020-8597-is-it-applicable-for-palo-alto/m-p/317174#M81526 jdelio 2020-03-18T23:17:21Z