Oval Definition:oval:org.opensuse.security:def:83941
Revision Date:2020-04-17Version:1
Title:Security update for freeradius-server (Moderate)
Description:

This update for freeradius-server fixes the following issues:

- CVE-2019-13456: Fixed a side-channel password leak in EAP-pwd (bsc#1144524). - CVE-2019-17185: Fixed a debial of service due to multithreaded BN_CTX access (bsc#1166847). - Fixed an issue in TLS-EAP where the OCSP verification, when an intermediate client certificate was not explicitly trusted (bsc#1146848).
Family:unixClass:patch
Status:Reference(s):1144524
1146848
1166847
CVE-2019-13456
CVE-2019-17185
SUSE-SU-2020:1018-1
Platform(s):SUSE OpenStack Cloud 8
Product(s):
Definition Synopsis
  • SUSE OpenStack Cloud 8 is installed
  • AND Package Information
  • freeradius-server-3.0.15-2.14.1 is installed
  • OR freeradius-server-doc-3.0.15-2.14.1 is installed
  • OR freeradius-server-krb5-3.0.15-2.14.1 is installed
  • OR freeradius-server-ldap-3.0.15-2.14.1 is installed
  • OR freeradius-server-libs-3.0.15-2.14.1 is installed
  • OR freeradius-server-mysql-3.0.15-2.14.1 is installed
  • OR freeradius-server-perl-3.0.15-2.14.1 is installed
  • OR freeradius-server-postgresql-3.0.15-2.14.1 is installed
  • OR freeradius-server-python-3.0.15-2.14.1 is installed
  • OR freeradius-server-sqlite-3.0.15-2.14.1 is installed
  • OR freeradius-server-utils-3.0.15-2.14.1 is installed
    • BACK