Joined: 25 Feb 2003
Location: Essen, Germany
|Posted: Wed Sep 22, 2004 10:51 am Post subject: [ GLSA 200409-29 ] FreeRADIUS: Multiple Denial of Service vu
|Gentoo Linux Security Advisory
Title: FreeRADIUS: Multiple Denial of Service vulnerabilities (GLSA 200409-29)
Date: September 22, 2004
Updated: May 22, 2006
Multiple Denial of Service vulnerabilities were found and fixed in
FreeRADIUS is an open source RADIUS authentication server
Vulnerable: < 1.0.1
Unaffected: >= 1.0.1
Architectures: All supported architectures
There are undisclosed defects in the way FreeRADIUS handles incorrect
A remote attacker could send specially-crafted packets to the
FreeRADIUS server to deny service to other users by crashing the
There is no known workaround at this time.
All FreeRADIUS users should upgrade to the latest version:
|# emerge sync
# emerge -pv ">=net-dialup/freeradius-1.0.1"
# emerge ">=net-dialup/freeradius-1.0.1"
FreeRADIUS Vulnerability Notifications
Last edited by GLSA on Fri Dec 09, 2011 4:17 am; edited 4 times in total