Lucene search
GoogleOSV:DSA-2726-1HistoryJul 25, 2013 - 12:00 a.m.
php-radius - buffer overflow
2013-07-2500:00:00
Google
osv.dev
9
0.02 Low
EPSS
Percentile
88.8%
A buffer overflow has been discovered in the Radius extension for PHP.
The function handling Vendor Specific Attributes assumed that the
attributes given would always be of valid length. An attacker could
use this assumption to trigger a buffer overflow.
For the oldstable distribution (squeeze), this problem has been fixed in
version 1.2.5-2+squeeze1.
For the stable distribution (wheezy), this problem has been fixed in
version 1.2.5-2.3+deb7u1.
For the unstable distribution (sid), this problem has been fixed in
version 1.2.5-2.4.
We recommend that you upgrade your php-radius packages.
| CPE | Name | Operator | Version |
|---|---|---|---|
| php-radius | eq | 1.2.5-2.3 |
References
Related
nessus
nessus
Mandriva Linux Security Advisory : php-radius (MDVSA-2013:192)
2013-07-03 00:00:00
Debian DSA-2726-1 : php-radius - buffer overflow
2013-07-28 00:00:00
openvas
openvas
Mageia: Security Advisory (MGASA-2013-0206)
2022-01-28 00:00:00
Debian Security Advisory DSA 2726-1 (php-radius - buffer overflow)
2013-07-25 00:00:00
Debian: Security Advisory (DSA-2726-1)
2013-07-24 00:00:00
cve
cve
CVE-2013-2220
2022-10-03 16:14:59
debiancve
debiancve
CVE-2013-2220
2022-10-03 16:14:59
securityvulns
securityvulns
[ MDVSA-2013:192 ] php-radius
2013-07-08 00:00:00
php-radius buffer overflow
2013-07-08 00:00:00
nvd
nvd
CVE-2013-2220
2013-07-31 13:20:27
ubuntucve
ubuntucve
CVE-2013-2220
2013-07-31 00:00:00
prion
prion
Buffer overflow
2013-07-31 13:20:00
debian
debian
[SECURITY] [DSA 2726-1] php-radius security update
2013-07-25 18:00:42
cvelist
cvelist
CVE-2013-2220
2022-10-03 16:14:59
mageia
mageia
Updated php-radius packages fix CVE-2013-2220
2013-07-09 22:33:38