SUSE-SU-2017:1777-1 -- SLES freeradius-server| ID: oval:org.secpod.oval:def:89044689 | Date: (C)2021-07-07 (M)2022-10-10 |
| Class: PATCH | Family: unix |
This update for freeradius-server fixes the following issues: - CVE-2017-9148: Disable OpenSSL"s internal session cache to mitigate authentication bypass. - CVE-2015-4680: Add a configuration option to allow checking of all intermediate certificates for revocations. The following non security issue was fixed: - Cannot create table radpostauth because of deprecated TIMESTAMP syntax
| Platform: |
| SUSE Linux Enterprise Server 11 SP4 |
| Product: |
| freeradius-server |
