3 matches found
Debian: Security Advisory (DSA-2573-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Debian Security Advisory DSA 2573-1 (radsecproxy)
The remote host is missing an update to radsecproxy announced via advisory DSA 2573-1. OpenVAS Vulnerability Test $Id: deb25731.nasl 6612 2017-07-07 12:08:03Z cfischer $ Description: Auto-generated from advisory DSA 2573-1 radsecproxy Authors: Thomas Reinke Copyright: Copyright c 2012 E-Soft Inc...
Debian DSA-2573-1 : radsecproxy - SSL certificate verification weakness
Ralf Paffrath reported that Radsecproxy, a RADIUS protocol proxy, mixed up pre- and post-handshake verification of clients. This vulnerability may wrongly accept clients without checking their certificate chain under certain configurations. Raphael Geissert spotted that the fix for CVE-2012-4523...