| Revision Date: | 2020-04-17 | Version: | 1 |
| Title: | Security update for freeradius-server (Moderate) |
| Description: |
This update for freeradius-server fixes the following issues:
- CVE-2019-13456: Fixed a side-channel password leak in EAP-pwd (bsc#1144524). - CVE-2019-17185: Fixed a debial of service due to multithreaded BN_CTX access (bsc#1166847). - Fixed an issue in TLS-EAP where the OCSP verification, when an intermediate client certificate was not explicitly trusted (bsc#1146848).
|
| Family: | unix | Class: | patch |
| Status: | | Reference(s): | 1144524
1146848
1166847
CVE-2019-13456
CVE-2019-17185
SUSE-SU-2020:1023-1
|
| Platform(s): | SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1
| Product(s): | |