Oval Definition:oval:org.opensuse.security:def:74826
Revision Date:2020-12-01Version:1
Title:Security update for freeradius-server (Moderate)
Description:

This update for freeradius-server fixes the following issues:

- CVE-2019-13456: Fixed a side-channel password leak in EAP-pwd (bsc#1144524). - CVE-2019-17185: Fixed a debial of service due to multithreaded BN_CTX access (bsc#1166847). - Fixed an issue in TLS-EAP where the OCSP verification, when an intermediate client certificate was not explicitly trusted (bsc#1146848).

This update was imported from the SUSE:SLE-15:Update update project.
Family:unixClass:patch
Status:Reference(s):1144524
1146848
1161252
1166847
CVE-2019-13456
CVE-2019-17185
CVE-2020-6378
CVE-2020-6379
CVE-2020-6380
openSUSE-SU-2020:0093-1
openSUSE-SU-2020:0553-1
Platform(s):openSUSE Leap 15.1
Product(s):
Definition Synopsis
  • openSUSE Leap 15.1 is installed
  • AND Package Information
  • freeradius-server-3.0.16-lp151.4.4 is installed
  • OR freeradius-server-devel-3.0.16-lp151.4.4 is installed
  • OR freeradius-server-doc-3.0.16-lp151.4.4 is installed
  • OR freeradius-server-krb5-3.0.16-lp151.4.4 is installed
  • OR freeradius-server-ldap-3.0.16-lp151.4.4 is installed
  • OR freeradius-server-libs-3.0.16-lp151.4.4 is installed
  • OR freeradius-server-mysql-3.0.16-lp151.4.4 is installed
  • OR freeradius-server-perl-3.0.16-lp151.4.4 is installed
  • OR freeradius-server-postgresql-3.0.16-lp151.4.4 is installed
  • OR freeradius-server-python-3.0.16-lp151.4.4 is installed
  • OR freeradius-server-sqlite-3.0.16-lp151.4.4 is installed
  • OR freeradius-server-utils-3.0.16-lp151.4.4 is installed
    • BACK