[ubuntu/lucid-security] freeradius 2.1.8+dfsg-1ubuntu1.1 (Accepted)
Marc Deslauriers
marc.deslauriers at canonical.com
Wed Feb 26 13:00:41 UTC 2014
freeradius (2.1.8+dfsg-1ubuntu1.1) lucid-security; urgency=medium
* SECURITY UPDATE: incorrect password expiration check
- debian/patches/CVE-2011-4966.patch: check for both account and
password expiration in src/modules/rlm_unix/rlm_unix.c.
- CVE-2011-4966
* SECURITY UPDATE: denial of service and possible code execution via
buffer overflow in rlm_pap module
- debian/patches/CVE-2013-2015.patch: properly handle buffer size in
src/modules/rlm_pap/rlm_pap.c.
- CVE-2014-2015
Date: 2014-02-24 15:06:13.582272+00:00
Changed-By: Marc Deslauriers <marc.deslauriers at canonical.com>
https://launchpad.net/ubuntu/lucid/+source/freeradius/2.1.8+dfsg-1ubuntu1.1
-------------- next part --------------
Sorry, changesfile not available.
More information about the Lucid-changes
mailing list