CVE-2018-11574: Improper input validation together with an integer overflow in the EAP-TLS protocol implementation in PPPD may cause a crash, information disclosure, or authentication bypass. This implementation is distributed as a patch for PPPD 0.91, and includes the affected eap.c and eap-tls.c files. Configurations that use the `refuse-app` option are unaffected.
Please fix it.
Last update: 2018-06-16
The package has not entered testing even though the delay is over
The package has not entered testing even though the 2-day delay is over.Check why.