AVG-934 log
| Package | freeradius |
| Status | Fixed |
| Severity | Critical |
| Type | multiple issues |
| Affected | 2.2.0-1 |
| Fixed | 2.2.9-1 |
| Current | 3.2.3-10 [extra] |
| Ticket | None |
| Created | Wed Mar 27 13:49:58 2019 |
| Issue | Severity | Remote | Type | Description |
|---|---|---|---|---|
| CVE-2017-10981 | Low | Yes | Denial of service | A security issue has been found in freeradius <= 2.2.9, where the fr_dhcp_decode() function leaked memory in certain circumstances. A remote attacker with... |
| CVE-2017-10980 | Medium | Yes | Denial of service | A security issue has been found in freeradius <= 2.2.9, where thedecode_tlv() function leaked memory in certain circumstances. A remote attacker with the... |
| CVE-2017-10979 | Critical | Yes | Arbitrary code execution | A security issue has been found in freeradius <= 2.2.9, where the rad_coalesce() function checks for WiMAX attributes which are too small, but it does not... |