[ubuntu/bionic-updates] freeradius 3.0.16+dfsg-1ubuntu3.2 (Accepted)
Ubuntu Archive Robot
ubuntu-archive-robot at lists.canonical.com
Wed Jan 4 12:28:19 UTC 2023
freeradius (3.0.16+dfsg-1ubuntu3.2) bionic-security; urgency=medium
* SECURITY UPDATE: DoS when using concurrent EAP-pwd handshakes
- debian/patches/CVE-2019-17185.patch: fix DoS due to multithreaded
BN_CTX access
- CVE-2019-17185
* SECURITY UPDATE: null pointer dereference in eap-sim module
- debian/patches/CVE-2022-41860.patch: add sanity checks in
eapsimlib.c
- CVE-2022-41860
* SECURITY UDPATE: DoS using abinary attribute
- debian/patches/CVE-2022-41861.patch: fix abinary attribute checks
- CVE-2022-41861
Date: 2023-01-04 07:51:09.190884+00:00
Changed-By: Nishit Majithia <nishit.majithia at canonical.com>
Signed-By: Ubuntu Archive Robot <ubuntu-archive-robot at lists.canonical.com>
https://launchpad.net/ubuntu/+source/freeradius/3.0.16+dfsg-1ubuntu3.2
-------------- next part --------------
Sorry, changesfile not available.
More information about the Bionic-changes
mailing list