Oval Definition:	oval:org.opensuse.security:def:20093111
Revision Date: 2017-09-27 Version: 1 Title: CVE-2009-3111 Description: The rad_decode function in FreeRADIUS before 1.1.8 allows remote attackers to cause a denial of service (radiusd crash) via zero-length Tunnel-Password attributes, as demonstrated by a certain module in VulnDisco Pack Professional 7.6 through 8.11. NOTE: this is a regression error related to CVE-2003-0967. Family: unix Class: vulnerability Status: Reference(s): CVE-2009-3111 Platform(s): Novell Linux Desktop 9 for x86 Novell Linux Desktop 9 for x86_64 Open Enterprise Server openSUSE 10.3 SUSE Linux Enterprise SDK 10 SP2 SUSE Linux Enterprise SDK 10 SP3 SUSE Linux Enterprise Server 10 SP3 Product(s): Definition Synopsis Release Information sles10-sp3 is installed AND freeradius-devel less than 1.1.7-21.5.1 OR freeradius less than 1.1.7-21.5.1 OR Package Information sles10-sp2-sdk is installed AND freeradius-devel less than 1.1.0-19.14 OR freeradius less than 1.1.0-19.14
BACK