7 matches found
Denial Of Service (DoS)
freeradius is vulnerable to denial of service DoS attacks. The vulnerability exists as an FR-GV-201 issue in FreeRADIUS 2.x before 2.2.10 and 3.x before 3.0.15 allows "Read / write overflow in makesecret" and a denial of service...
SUSE SLES12 Security Update : freeradius-server (SUSE-SU-2017:2243-1)
This update for freeradius fixes the following issues: Security issues fixed : - CVE-2017-10988: Decode 'signed' attributes correctly. bnc1049086 - CVE-2017-10987: Check for option overflowing the packet. bnc1049086 - CVE-2017-10985: Fix infinite loop and memory exhaustion with 'concat' attribute...
Design/Logic Flaw
An FR-GV-201 issue in FreeRADIUS 2.x before 2.2.10 and 3.x before 3.0.15 allows "Read / write overflow in makesecret" and a denial of service...
CVE-2017-10978
An FR-GV-201 issue in FreeRADIUS 2.x before 2.2.10 and 3.x before 3.0.15 allows "Read / write overflow in makesecret" and a denial of service...
CVE-2017-10978
An FR-GV-201 issue in FreeRADIUS 2.x before 2.2.10 and 3.x before 3.0.15 allows "Read / write overflow in makesecret" and a denial of service...
CVE-2017-10978
FreeRADIUS is affected by CVE-2017-10978 (and related CVEs) with out-of-bounds memory handling in packet processing. The primary publicly documented issue for CVE-2017-10978 is an out-of-bounds read/write in make_secret() that can cause a crash and, in some disclosures, potential code execution, ...
CVE-2017-10978
An FR-GV-201 issue in FreeRADIUS 2.x before 2.2.10 and 3.x before 3.0.15 allows "Read / write overflow in makesecret" and a denial of service...