https://cybercrime.club/tags/kernel-vulnerability/Infrastructure security news for people who build infrastructure.Hugo -- gohugo.ioen-usSat, 20 Jun 2026 11:09:13 -0400https://cybercrime.club/posts/openbsd-cve-2026-55706-sppp-pap-pppoe-auth-bypass-27-year/Sat, 20 Jun 2026 11:09:13 -0400https://cybercrime.club/posts/openbsd-cve-2026-55706-sppp-pap-pppoe-auth-bypass-27-year/CVE-2026-55706 is a 27-year-old authentication bypass in OpenBSD's sppp(4) PAP handler. An attacker-controlled compare length means empty credentials produce a PAP_ACK — and an oversized one leaks kernel heap. Full details and a working PoC are public.vulnerabilities