[ubuntu/quantal-security] freeradius 2.1.12+dfsg-1.1ubuntu0.1 (Accepted)
Marc Deslauriers
marc.deslauriers at canonical.com
Wed Feb 26 13:00:43 UTC 2014
freeradius (2.1.12+dfsg-1.1ubuntu0.1) quantal-security; urgency=medium
* SECURITY UPDATE: incorrect password expiration check
- debian/patches/CVE-2011-4966.patch: check for both account and
password expiration in src/modules/rlm_unix/rlm_unix.c.
- CVE-2011-4966
* SECURITY UPDATE: denial of service and possible code execution via
buffer overflow in rlm_pap module
- debian/patches/CVE-2013-2015.patch: properly handle buffer size in
src/modules/rlm_pap/rlm_pap.c.
- CVE-2014-2015
Date: 2014-02-24 14:57:16.487099+00:00
Changed-By: Marc Deslauriers <marc.deslauriers at canonical.com>
https://launchpad.net/ubuntu/quantal/+source/freeradius/2.1.12+dfsg-1.1ubuntu0.1
-------------- next part --------------
Sorry, changesfile not available.
More information about the Quantal-changes
mailing list