Oval Definition:oval:org.mitre.oval:def:22329
Revision Date:2014-05-26Version:13
Title:ELSA-2007:0338: freeradius security update (Moderate)
Description:Memory leak in freeRADIUS 1.1.5 and earlier allows remote attackers to cause a denial of service (memory consumption) via a large number of EAP-TTLS tunnel connections using malformed Diameter format attributes, which causes the authentication request to be rejected but does not reclaim VALUE_PAIR data structures.
Family:unixClass:patch
Status:ACCEPTEDReference(s):CVE-2007-2028
ELSA-2007:0338-02
Platform(s):Oracle Linux 5
Product(s):freeradius
Definition Synopsis
  • Oracle Linux 5.x
  • AND rpm test
  • freeradius-mysql is earlier than 0:1.1.3-1.2.el5
  • OR freeradius-postgresql is earlier than 0:1.1.3-1.2.el5
  • OR freeradius-unixODBC is earlier than 0:1.1.3-1.2.el5
  • OR freeradius is earlier than 0:1.1.3-1.2.el5
  • BACK