Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
altlinuxHttps://packages.altlinux.org/en/sisyphus/security/500E2B7131C195145DBAC95744B05CD6
HistoryDec 04, 2008 - 12:00 a.m.

Security fix for the ALT Linux 6 package freeradius version 2.1.3-1

2008-12-0400:00:00
https://packages.altlinux.org/en/sisyphus/security/
packages.altlinux.org
6

7.2 High

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

JSON

Dec. 4, 2008 John Dennis &[email protected]> - 2.1.3-1

- upgrade to latest upstream release, upstream summary follows:
  The focus of this release is stability.
  Feature Improvements:
    * Allow running with "user=radiusd" and binding to secure sockets.
    * Start sending Status-Server "are you alive" messages earlier, which
      helps with proxying multiple realms to a home server.
    * Removed thread pool code from rlm_perl.  It's not necessary.
    * Added example Perl configuration to raddb/modules/perl
    * Force OpenSSL to support certificates with SHA256. This seems to be
      necessary for WiMAX certs.
  Bug fixes:
    * Fix Debian patch to allow it to build.
    * Fix potential NULL dereference in debugging mode on certain
      platforms for TTLS and PEAP inner tunnels.
    * Fix uninitialized memory in handling of vendor definitions
    * Fix parsing of quoted (but non-string) attributes in the "users" file.
    * Initialize uknown NAS IP to 255.255.255.255, rather than 0.0.0.0
    * use SUN_LEN in control socket, to avoid truncation on some platforms.
    * Correct internal handling of "debug condition" to prevent it from
      being over-written.
    * Check return code of regcomp in "unlang", so that invalid regular
      expressions are caught rather than mishandled.
    * Make rlm_sql use &LTltdl.h>.  Addresses bug #610.
    * Document list "type = status" better.  Closes bug #580.
    * Set "default days" for certificates, because OpenSSL won't do it.
      This closes bug #615.
    * Reference correct list in example raddb/modules/ldap. Closes #596.
    * Increase default schema size for Acct-Session-Id to 64. Closes #540.
    * Fix use of temporary files in dialup-admin.  Closes #605 and
      addresses CVE-2008-4474.
    * Addressed a number of minor issues found by Coverity.
    * Added DHCP option 150 to the dictionary.  Closes #618.
OSVersionArchitecturePackageVersionFilename
ALT Linux6srcfreeradius-2.1.10-alt3.m60p.1.src.rpm< 2.1.3-1freeradius-2.1.10-alt3.M60P.1.src.rpm
ALT Linux6x86_64freeradius-2.1.10-alt3.m60p.1.x86_64.rpm< 2.1.3-1freeradius-2.1.10-alt3.M60P.1.x86_64.rpm
ALT Linux6x86_64freeradius-debuginfo-2.1.10-alt3.m60p.1.x86_64.rpm< 2.1.3-1freeradius-debuginfo-2.1.10-alt3.M60P.1.x86_64.rpm
ALT Linux6x86_64freeradius-devel-2.1.10-alt3.m60p.1.x86_64.rpm< 2.1.3-1freeradius-devel-2.1.10-alt3.M60P.1.x86_64.rpm
ALT Linux6x86_64freeradius-krb5-2.1.10-alt3.m60p.1.x86_64.rpm< 2.1.3-1freeradius-krb5-2.1.10-alt3.M60P.1.x86_64.rpm
ALT Linux6x86_64freeradius-krb5-debuginfo-2.1.10-alt3.m60p.1.x86_64.rpm< 2.1.3-1freeradius-krb5-debuginfo-2.1.10-alt3.M60P.1.x86_64.rpm
ALT Linux6x86_64freeradius-ldap-2.1.10-alt3.m60p.1.x86_64.rpm< 2.1.3-1freeradius-ldap-2.1.10-alt3.M60P.1.x86_64.rpm
ALT Linux6x86_64freeradius-ldap-debuginfo-2.1.10-alt3.m60p.1.x86_64.rpm< 2.1.3-1freeradius-ldap-debuginfo-2.1.10-alt3.M60P.1.x86_64.rpm
ALT Linux6x86_64freeradius-libs-2.1.10-alt3.m60p.1.x86_64.rpm< 2.1.3-1freeradius-libs-2.1.10-alt3.M60P.1.x86_64.rpm
ALT Linux6x86_64freeradius-libs-debuginfo-2.1.10-alt3.m60p.1.x86_64.rpm< 2.1.3-1freeradius-libs-debuginfo-2.1.10-alt3.M60P.1.x86_64.rpm
Rows per page:
1-10 of 431

Related

nessus 2
ubuntucve 1
prion 1
cvelist 1
debiancve 1
cve 1
nessus
nessus
openSUSE 10 Security Update : freeradius (freeradius-5685)
2008-10-17 00:00:00
openSUSE Security Update : freeradius-server (freeradius-server-248)
2009-07-21 00:00:00
ubuntucve
ubuntucve
CVE-2008-4474
2008-10-07 00:00:00
prion
prion
Design/Logic Flaw
2008-10-07 21:11:00
cvelist
cvelist
CVE-2008-4474
2008-10-07 21:00:00
debiancve
debiancve
CVE-2008-4474
2008-10-07 21:11:38
cve
cve
CVE-2008-4474
2008-10-07 21:11:38

7.2 High

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

JSON
Related for 500E2B7131C195145DBAC95744B05CD6
nessus2ubuntucve1prion1cvelist1debiancve1cve1