aru Posted April 6, 2006 Report Share Posted April 6, 2006 Mandriva Advisories MDKSA-2006:066 : freeradius Updated FreeRADIUS packages fix off-by-one overflow vulnerabilty April 5th, 2006 Off-by-one error in the sql_error function in sql_unixodbc.c in FreeRADIUS might allow remote attackers to cause a denial of service (crash) and possibly execute arbitrary code by causing the external database query to fail. Updated packages have been patched to correct this issue. The released versions of Mandriva GNU/Linux affected are: 2006.0Full information about this advisory, including the updated packages, is available at: wwwnew.mandriva.com/security/advisories?name=MDKSA-2006:066 Other references: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-4744 Posted automatically by aru (mdksec2mub v: mdksec2mub,v 0.15 2005/11/24 16:53:12 aru Exp aru $) Link to comment Share on other sites More sharing options...
Recommended Posts