OVAL Reference oval:org.opensuse.security:def:81232

Oval Definition:

oval:org.opensuse.security:def:81232

Revision Date:	2017-08-23	Version:	1
Title:	Security update for freeradius-server (Moderate)
Description:	This update for freeradius fixes the following issues: Security issues fixed: - CVE-2017-10988: Decode 'signed' attributes correctly. (bnc#1049086) - CVE-2017-10987: Check for option overflowing the packet. (bnc#1049086) - CVE-2017-10985: Fix infinite loop and memory exhaustion with 'concat' attributes. (bnc#1049086) - CVE-2017-10984: Fix write overflow in data2vp_wimax(). (bnc#1049086) - CVE-2017-10983: Fix read overflow when decoding option 63. (bnc#1049086) - CVE-2017-10978: Fix read / write overflow in make_secret(). (bnc#1049086)
Family:	unix	Class:	patch
Status:		Reference(s):	1049086 CVE-2017-10978 CVE-2017-10983 CVE-2017-10984 CVE-2017-10985 CVE-2017-10987 CVE-2017-10988 SUSE-SU-2017:2243-1
Platform(s):	SUSE Linux Enterprise Server 12 SP2	Product(s):
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information freeradius-server-3.0.3-17.9.1 is installed OR freeradius-server-doc-3.0.3-17.9.1 is installed OR freeradius-server-krb5-3.0.3-17.9.1 is installed OR freeradius-server-ldap-3.0.3-17.9.1 is installed OR freeradius-server-libs-3.0.3-17.9.1 is installed OR freeradius-server-mysql-3.0.3-17.9.1 is installed OR freeradius-server-perl-3.0.3-17.9.1 is installed OR freeradius-server-postgresql-3.0.3-17.9.1 is installed OR freeradius-server-python-3.0.3-17.9.1 is installed OR freeradius-server-sqlite-3.0.3-17.9.1 is installed OR freeradius-server-utils-3.0.3-17.9.1 is installed

BACK