SUSE-SU-2017:1777-1 -- SLES freeradius-serverID: oval:org.secpod.oval:def:89044689 | Date: (C)2021-07-07 (M)2022-10-10 |
Class: PATCH | Family: unix |
This update for freeradius-server fixes the following issues: - CVE-2017-9148: Disable OpenSSL"s internal session cache to mitigate authentication bypass. - CVE-2015-4680: Add a configuration option to allow checking of all intermediate certificates for revocations. The following non security issue was fixed: - Cannot create table radpostauth because of deprecated TIMESTAMP syntax
Platform: |
SUSE Linux Enterprise Server 11 SP4 |
Product: |
freeradius-server |