SUSE-SU-2017:2243-1 -- SLES freeradiusID: oval:org.secpod.oval:def:89044616 | Date: (C)2021-07-07 (M)2022-10-10 |
Class: PATCH | Family: unix |
This update for freeradius fixes the following issues: Security issues fixed: - CVE-2017-10988: Decode "signed" attributes correctly. - CVE-2017-10987: Check for option overflowing the packet. - CVE-2017-10985: Fix infinite loop and memory exhaustion with "concat" attributes. - CVE-2017-10984: Fix write overflow in data2vp_wimax. - CVE-2017-10983: Fix read overflow when decoding option 63. - CVE-2017-10978: Fix read / write overflow in make_secret
Platform: |
SUSE Linux Enterprise Server 12 SP2 |