Advisory ROSA-SA-2026-3209

software: hostapd 2.11 WASP: ROSA-CHROME unaffected versions = hostapd-2.11-2 affected versions hostapd-2.11-2 CVE-ID: CVE-2025-24912 BDU-ID: None CVE-Crit: LOW CVE-DESC.: RADIUS packet handling vulnerability in hostapd: hostapd incorrectly handles specially crafted RADIUS packets. When...

EUVD-2014-3277

Malware in sbrugna...

EUVD-2022-29570

Malicious code in bioql PyPI...

Updated wpa_supplicant & hostapd packages fix security vulnerability

hostapd fails to process crafted RADIUS packets properly. When hostapd authenticates wi-fi devices with RADIUS authentication, an attacker in the position between the hostapd and the RADIUS server may inject crafted RADIUS packets and force RADIUS authentications to fail. CVE-2025-24912...

MGASA-2025-0113 Updated wpa_supplicant & hostapd packages fix security vulnerability

hostapd fails to process crafted RADIUS packets properly. When hostapd authenticates wi-fi devices with RADIUS authentication, an attacker in the position between the hostapd and the RADIUS server may inject crafted RADIUS packets and force RADIUS authentications to fail. CVE-2025-24912...

SUSE-SU-2025:0977-1 Security update for wpa_supplicant

This update for wpasupplicant fixes the following issues: - CVE-2025-24912: Fixed hostapd failing to process crafted RADIUS packets properly bsc1239461...

CVE-2025-24912

Summary: CVE-2025-24912 affects hostapd (RADIUS handling) and has been addressed in multiple vendor advisories. The issue causes hostapd to mishandle crafted RADIUS packets during authentication, enabling an attacker positioned between hostapd and the RADIUS server to inject crafted RADIUS packet...

SUSE CVE-2004-0365

The dissectattributevaluepairs function in packet-radius.c for Ethereal 0.8.13 to 0.10.2 allows remote attackers to cause a denial of service crash via a malformed RADIUS packet that triggers a null dereference...

CVE-2022-24704

The radpacketrecv function in opt/src/accel-pppd/radius/packet.c suffers from a buffer overflow vulnerability, whereby user input len is copied into a fixed buffer &attr-val.integer without any bound checks. If the client connects to the server and sends a large radius packet, a buffer overflow...

Buffer overflow

The radpacketrecv function in opt/src/accel-pppd/radius/packet.c suffers from a buffer overflow vulnerability, whereby user input len is copied into a fixed buffer &attr-val.integer without any bound checks. If the client connects to the server and sends a large radius packet, a buffer overflow...

CVE-2022-24704 Buffer Overflow via Crafted IPv6 Addr Attribute Type Client Request in Accel-PPP v1.12

The radpacketrecv function in opt/src/accel-pppd/radius/packet.c suffers from a buffer overflow vulnerability, whereby user input len is copied into a fixed buffer &attr-val.integer without any bound checks. If the client connects to the server and sends a large radius packet, a buffer overflow...

CVE-2022-24704

CVE-2022-24704 affects the accel-ppp project, specifically the function rad_packet_recv in opt/src/accel-pppd/radius/packet.c . The vulnerability arises because user input length is copied into a fixed buffer and into attr->val.integer without bounds checks, leading to a buffer overflow when a...

accel-ppp 安全漏洞

Accel-Ppp is a high performance Pptp/L2tp/Pppoe/Ipoe server for Linux. A security vulnerability exists in accel-ppp that stems from a buffer overflow vulnerability in the rad packet recv function in accel-pppd radius packet.c, which is triggered if a client connects to the server side and sends a...

Accel-Ppp 安全漏洞

Accel-Ppp is a high performance Pptp/L2tp/Pppoe/Ipoe server for Linux. A security vulnerability exists in accel-ppp, which stems from a memcpy buffer overflow in the rad packet recv function in radius packet.c. If the server is connected to a malicious client, a carefully crafted client request c...

CVE-2022-24704

The radpacketrecv function in opt/src/accel-pppd/radius/packet.c suffers from a buffer overflow vulnerability, whereby user input len is copied into a fixed buffer &attr-;val.integer without any bound checks. If the client connects to the server and sends a large radius packet, a buffer overflow...

CVE-2022-24705

The radpacketrecv function in radius/packet.c suffers from a memcpy buffer overflow, resulting in an overly-large recvfrom into a fixed buffer that causes a buffer overflow and overwrites arbitrary memory. If the server connects with a malicious client, crafted client requests can remotely trigge...

Denial Of Service (DoS)

Scapy is vulnerable to denial of service DoS attacks. It uses a buggy unnecessary class RADIUSAttrPacketListField which does not validate the input when reading the length field in the RADIUS packets Attribute Value Pairs AVP, causing an infinite loop and an application crash. This vulnerability ...

Amazon Linux AMI : freeradius (ALAS-2017-865)

Out-of-bounds read in frdhcpdecodeoptions : An out-of-bounds read flaw was found in the way FreeRADIUS server handles decoding of DHCP packets. A remote attacker could use this flaw to crash the FreeRADIUS server by sending a specially crafted DHCP request. CVE-2017-10982 Out-of-bounds read in...

FreeRADIUS data2vp_wimax Heap Buffer Overflow (CVE-2017-10984)

A heap-based buffer overflow vulnerability exists in FreeRADIUS. The vulnerability is due to improper handling of the continuation flag in WiMAX attributes. A remote attacker can exploit the vulnerability by sending a crafted RADIUS packet with a malformed WiMAX attribute with the continuation fl...

CVE-2017-10978

An out-of-bounds read and write flaw was found in the way FreeRADIUS server handled RADIUS packets. A remote attacker could use this flaw to crash the FreeRADIUS server by sending a specially crafted RADIUS packet...