Jump to content

Advisories (MDKSA-2006:066 ): freeradius


aru
 Share

Recommended Posts

Mandriva Advisories MDKSA-2006:066 : freeradius

 

Updated FreeRADIUS packages fix off-by-one overflow vulnerabilty

April 5th, 2006

 

Off-by-one error in the sql_error function in sql_unixodbc.c in FreeRADIUS might allow remote attackers to cause a denial of service (crash) and possibly execute arbitrary code by causing the external database query to fail. Updated packages have been patched to correct this issue.

 

 

The released versions of Mandriva GNU/Linux affected are:

  • 2006.0

Full information about this advisory, including the updated packages, is available at:

wwwnew.mandriva.com/security/advisories?name=MDKSA-2006:066

 

Other references:

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-4744

 

Posted automatically by aru (mdksec2mub v: mdksec2mub,v 0.15 2005/11/24 16:53:12 aru Exp aru $)

Link to comment
Share on other sites

 Share

×
×
  • Create New...