2 matches found
Denial of service
An FR-GV-303 issue in FreeRADIUS 3.x before 3.0.15 allows "DHCP - Infinite read in dhcpattr2vp" and a denial of service...
CVE-2017-10986
FreeRADIUS 3.x prior to 3.0.15 is affected by CVE-2017-10986. The issue is an out-of-bounds read in the dhcp_attr2vp() function when decoding string DHCP options, which could trigger a denial of service via crafted packets. Arch Linux advisory confirms the vulnerability and lists upgrading to 3.0...