Dadv

**Name of the Vulnerable Software and Affected Versions** MPD versions prior to 5.9 **Description** The issue allows a remote attacker who can send specifically crafted L2TP control packets with `AVP Q.931 Cause Code` to execute arbitrary code or cause a denial of service due to memory corruption. **Recommendations** For versions prior to 5.9, update to version 5.9 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** MPD versions prior to 5.9 **Description** The issue allows a remote attacker who can send specifically crafted PPP authentication messages to cause the daemon to read beyond an allocated memory buffer, resulting in a denial of service condition. **Recommendations** For versions prior to 5.9, update to version 5.9 or later to resolve the issue.