Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2010-3697HistoryOct 07, 2010 - 9:00 p.m.
CVE-2010-3697
2010-10-0721:00:00
Debian Security Bug Tracker
security-tracker.debian.org
12
4.3 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:N/I:N/A:P
0.012 Low
EPSS
Percentile
85.3%
The wait_for_child_to_die function in main/event.c in FreeRADIUS 2.1.x before 2.1.10, in certain circumstances involving long-term database outages, does not properly handle long queue times for requests, which allows remote attackers to cause a denial of service (daemon crash) by sending many requests.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | freeradius | < 2.1.10+dfsg-1 | freeradius_2.1.10+dfsg-1_all.deb |
| Debian | 11 | all | freeradius | < 2.1.10+dfsg-1 | freeradius_2.1.10+dfsg-1_all.deb |
| Debian | 10 | all | freeradius | < 2.1.10+dfsg-1 | freeradius_2.1.10+dfsg-1_all.deb |
| Debian | 999 | all | freeradius | < 2.1.10+dfsg-1 | freeradius_2.1.10+dfsg-1_all.deb |
| Debian | 13 | all | freeradius | < 2.1.10+dfsg-1 | freeradius_2.1.10+dfsg-1_all.deb |
Related
prion
prion
Code injection
2010-10-07 21:00:00
ubuntucve
ubuntucve
CVE-2010-3697
2010-10-07 00:00:00
cve
cve
CVE-2010-3697
2010-10-07 21:00:00
openvas
openvas
Gentoo Security Advisory GLSA 201311-09
2015-09-29 00:00:00
gentoo
gentoo
FreeRADIUS: Multiple vulnerabilities
2013-11-13 00:00:00
nessus
nessus
GLSA-201311-09 : FreeRADIUS: Multiple vulnerabilities
2013-11-13 00:00:00
4.3 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:N/I:N/A:P
0.012 Low
EPSS
Percentile
85.3%
Related for DEBIANCVE:CVE-2010-3697