freeradius: Out-of-bounds read in fr_dhcp_decode() when decoding option 63

An out-of-bounds read flaw was found in the way FreeRADIUS server handled decoding of DHCP packets. A remote attacker could use this flaw to crash the FreeRADIUS server by sending a specially crafted DHCP request...

DEBIAN-CVE-2017-11434

The dhcpdecode function in slirp/bootp.c in QEMU aka Quick Emulator allows local guest OS users to cause a denial of service out-of-bounds read and QEMU process crash via a crafted DHCP options string...

FreeRADIUS 'fr_dhcp_decode()' function memory leak vulnerability

FreeRADIUS is a set of software that implements the RADIUS protocol from the FreeRADIUS Server project. The software is mainly used for account authentication management, bookkeeping management and Internet account management, etc. and contains a Radius server, a client library for BSD protocol...

UBUNTU-CVE-2017-10981

An FR-GV-204 issue in FreeRADIUS 2.x before 2.2.10 allows "DHCP - Memory leak in frdhcpdecode" and a denial of service...

PT-2010-5007 · Freeradius · Freeradius

Name of the Vulnerable Software and Affected Versions: FreeRADIUS version 2.1.9 Description: The issue is related to the fr dhcp decode function in lib/dhcp.c, which does not properly handle the DHCP Relay Agent Information option in certain non-default builds. This can be exploited by remote...