Jump to content

Mandriva Security Advisories

Existing user? Sign In
Sign In

Remember me Not recommended on shared computers

Forgot your password?
Sign Up

Browse
- Forums
- Events
- Staff
- Online Users
- Leaderboard
- More
Activity
- All Activity
- Search
- More
Leaderboard
More
- More

Advisories MDKSA-2007:085: Updated freeradius packages fix DoS vulnerability

paul

By paul
April 16, 2007 in Mandriva Security Advisories

Share

Recommended Posts

paul

Platinum

paul

Posted April 16, 2007

- Report
- Share

Posted April 16, 2007

Memory leak in freeRADIUS 1.1.5 and earlier allows remote attackers to

cause a denial of service (memory consumption) via a large number of

EAP-TTLS tunnel connections using malformed Diameter format attributes,

which causes the authentication request to be rejected but does not

reclaim VALUE_PAIR data structures.

Updated packages have been patched to correct this issue.

Link to comment

Share on other sites

Guest

This topic is now closed to further replies.

Go to topic listing

×

Browse
- Back
- Browse
- Forums
- Events
- Staff
- Online Users
- Leaderboard
Activity
- Back
- All Activity
- Search
Leaderboard

×

Create New...