freeradius 2.2.8+dfsg-0.1ubuntu0.1 source package in Ubuntu
Changelog
freeradius (2.2.8+dfsg-0.1ubuntu0.1) xenial-security; urgency=medium
* SECURITY UPDATE: read/write overflow in make_secret()
- debian/patches/CVE-2017-10978.patch: check lengths in
src/lib/radius.c.
- CVE-2017-10978
* SECURITY UPDATE: write overflow in rad_coalesce
- debian/patches/CVE-2017-10979.patch: check for long attributes in
src/lib/dhcp.c, src/lib/radius.c.
- CVE-2017-10979
* SECURITY UPDATE: memory leak in decode_tlv()
- debian/patches/CVE-2017-10980.patch: fix memory leak in
src/lib/dhcp.c.
- CVE-2017-10980
* SECURITY UPDATE: memory leak in fr_dhcp_decode()
- debian/patches/CVE-2017-10981.patch: fix another memory leak in
src/lib/dhcp.c.
- CVE-2017-10981
* SECURITY UPDATE: read overflow in fr_dhcp_decode_options()
- debian/patches/CVE-2017-10982.patch: check for long options in
src/lib/dhcp.c.
- CVE-2017-10982
* SECURITY UPDATE: read overflow when decoding option 63
- debian/patches/CVE-2017-10983.patch: decode correct option in
src/lib/dhcp.c.
- CVE-2017-10983
-- Marc Deslauriers <email address hidden> Wed, 26 Jul 2017 10:32:39 -0400
Upload details
- Uploaded by:
- Marc Deslauriers
- Uploaded to:
- Xenial
- Original maintainer:
- Ubuntu Developers
- Architectures:
- any all
- Section:
- net
- Urgency:
- Medium Urgency
See full publishing history Publishing
| Series | Published | Component | Section | |
|---|---|---|---|---|
| Xenial | updates | main | net | |
| Xenial | security | main | net |
Downloads
| File | Size | SHA-256 Checksum |
|---|---|---|
| freeradius_2.2.8+dfsg.orig.tar.gz | 3.4 MiB | 38ba94c58a3c7008e6854ef431657413f21792ee8b7db695b6e6aa26354b0402 |
| freeradius_2.2.8+dfsg-0.1ubuntu0.1.debian.tar.xz | 81.4 KiB | 591fc8e46ea3471d292a5aa836aecd3df35cdbaece7dc4feeabb0995ce6ad562 |
| freeradius_2.2.8+dfsg-0.1ubuntu0.1.dsc | 2.8 KiB | c3b268713a52cbff2de247d2bbea41749133fbbf5758c10a205999983caa0771 |
Available diffs
Binary packages built by this source
- freeradius: high-performance and highly configurable RADIUS server
FreeRADIUS is a high-performance RADIUS server with support for:
- many vendor-specific attributes
- proxying and replicating requests by any criteria
- authentication on system passwd, SQL, Kerberos, LDAP, users file, or PAM
- multiple DEFAULT configurations
- regexp matching in string attributes
and lots more.
- freeradius-common: FreeRADIUS common files
This package contains common files used by several of the other packages from
the FreeRADIUS project.
- freeradius-dbg: debug symbols for the FreeRADIUS packages
FreeRADIUS is a modular, high performance and feature-rich RADIUS server.
This package contains the detached debugging symbols for the Debian FreeRADIUS
packages.
- freeradius-dbgsym: debug symbols for package freeradius
FreeRADIUS is a high-performance RADIUS server with support for:
- many vendor-specific attributes
- proxying and replicating requests by any criteria
- authentication on system passwd, SQL, Kerberos, LDAP, users file, or PAM
- multiple DEFAULT configurations
- regexp matching in string attributes
and lots more.
- freeradius-iodbc: iODBC module for FreeRADIUS server
The FreeRADIUS server can use iODBC to access databases to authenticate users
and do accounting, and this module is necessary for that.
- freeradius-iodbc-dbgsym: debug symbols for package freeradius-iodbc
The FreeRADIUS server can use iODBC to access databases to authenticate users
and do accounting, and this module is necessary for that.
- freeradius-krb5: kerberos module for FreeRADIUS server
The FreeRADIUS server can use Kerberos to authenticate users, and this module
is necessary for that.
- freeradius-krb5-dbgsym: debug symbols for package freeradius-krb5
The FreeRADIUS server can use Kerberos to authenticate users, and this module
is necessary for that.
- freeradius-ldap: LDAP module for FreeRADIUS server
The FreeRADIUS server can use LDAP to authenticate users, and this module
is necessary for that.
- freeradius-ldap-dbgsym: debug symbols for package freeradius-ldap
The FreeRADIUS server can use LDAP to authenticate users, and this module
is necessary for that.
- freeradius-mysql: MySQL module for FreeRADIUS server
The FreeRADIUS server can use MySQL to authenticate users and do accounting,
and this module is necessary for that.
- freeradius-mysql-dbgsym: debug symbols for package freeradius-mysql
The FreeRADIUS server can use MySQL to authenticate users and do accounting,
and this module is necessary for that.
- freeradius-postgresql: PostgreSQL module for FreeRADIUS server
The FreeRADIUS server can use PostgreSQL to authenticate users and do
accounting, and this module is necessary for that.
- freeradius-postgresql-dbgsym: debug symbols for package freeradius-postgresql
The FreeRADIUS server can use PostgreSQL to authenticate users and do
accounting, and this module is necessary for that.
- freeradius-utils: FreeRADIUS client utilities
This package contains various client programs and utilities from
the FreeRADIUS Server project, including:
- radclient
- radeapclient
- radlast
- radsniff
- radsqlrelay
- radtest
- radwho
- radzap
- rlm_dbm_cat
- rlm_dbm_parser
- rlm_ippool_tool
- smbencrypt
- freeradius-utils-dbgsym: debug symbols for package freeradius-utils
This package contains various client programs and utilities from
the FreeRADIUS Server project, including:
- radclient
- radeapclient
- radlast
- radsniff
- radsqlrelay
- radtest
- radwho
- radzap
- rlm_dbm_cat
- rlm_dbm_parser
- rlm_ippool_tool
- smbencrypt
- libfreeradius-dev: FreeRADIUS shared library development files
The FreeRADIUS projects' libfreeradius-
radius and libfreeradius-eap, used by
the FreeRADIUS server and some of the utilities.
.
This package contains the development headers and static library version.
- libfreeradius-dev-dbgsym: debug symbols for package libfreeradius-dev
The FreeRADIUS projects' libfreeradius-
radius and libfreeradius-eap, used by
the FreeRADIUS server and some of the utilities.
.
This package contains the development headers and static library version.
- libfreeradius2: FreeRADIUS shared library
The FreeRADIUS projects' libfreeradius-
radius and libfreeradius-eap, used by
the FreeRADIUS server and some of the utilities.
- libfreeradius2-dbgsym: debug symbols for package libfreeradius2
The FreeRADIUS projects' libfreeradius-
radius and libfreeradius-eap, used by
the FreeRADIUS server and some of the utilities.
