FreeRadius RLM_SQL.C Buffer Overflow Vulnerability

Solution:
The vendor released an update to address this issue on 03 June, 2005.

SGI has released advisory 20050606-01-U to address this, and other issues for SGI ProPack 3 Service Pack 5. Please see the referenced advisory for further information.

Debian has released updated packages to address this issue. These packages may be applied using the 'apt-get' utility.

Gentoo has released advisory GLSA 200505-13 to address this issue. Please see the referenced advisory for more information. Gentoo users may carry out the following commands to update their computers:

emerge --sync
emerge --ask --oneshot --verbose ">=net-dialup/freeradius-1.0.2-r3"

SUSE Linux has released advisory SUSE-SR:2005:014 to address this and other issues. Please see the referenced advisory for more information.

RedHat has released advisory RHSA-2005:524-05 and fixes for Enterprise Linux. Please see the referenced advisory for links to fixes.

Fedora advisory FEDORA-2005-807 is available to address this issue in Fedora Core 3.


FreeRADIUS FreeRADIUS 1.0.2


 

Privacy Statement
Copyright 2010, SecurityFocus