Download
| Alert*
oval:org.secpod.oval:def:703651
freeradius: high-performance and highly configurable RADIUS server FreeRADIUS would allow unintended access over the network. oval:org.secpod.oval:def:204534 FreeRADIUS is a high-performance and highly configurable free Remote Authentication Dial In User Service server, designed to allow centralized authentication and authorization for a network. Security Fix: * An authentication bypass flaw was found in the way the EAP module in FreeRADIUS handled TLS ... oval:org.secpod.oval:def:89044689 This update for freeradius-server fixes the following issues: - CVE-2017-9148: Disable OpenSSL"s internal session cache to mitigate authentication bypass. - CVE-2015-4680: Add a configuration option to allow checking of all intermediate certificates for revocations. The following non security issu ... oval:org.secpod.oval:def:89044884 This update for freeradius-server fixes the following issues: Security issue fixed: - CVE-2017-9148: Disable OpenSSL"s internal session cache to mitigate authentication bypass. Non security issue fixed: - Fix case insensitive matching in compiled regular expressions oval:org.secpod.oval:def:112461 The FreeRADIUS Server Project is a high performance and highly configurable GPL'd free RADIUS server. The server is similar in some respects to Livingston's 2.0 server. While FreeRADIUS started as a variant of the Cistron RADIUS server, they don't share a lot in common any more. It now has many more ... oval:org.secpod.oval:def:502055 FreeRADIUS is a high-performance and highly configurable free Remote Authentication Dial In User Service server, designed to allow centralized authentication and authorization for a network. Security Fix: * An authentication bypass flaw was found in the way the EAP module in FreeRADIUS handled TLS ... oval:org.secpod.oval:def:1501917 The advisory is missing the security advisory description. For more information please visit the reference link |