FreeRadius RLM_SQL.C Buffer Overflow Vulnerability
The vendor released an update to address this issue on 03 June, 2005.
SGI has released advisory 20050606-01-U to address this, and other issues for SGI ProPack 3 Service Pack 5. Please see the referenced advisory for further information.
Debian has released updated packages to address this issue. These packages may be applied using the 'apt-get' utility.
Gentoo has released advisory GLSA 200505-13 to address this issue. Please see the referenced advisory for more information. Gentoo users may carry out the following commands to update their computers:
emerge --ask --oneshot --verbose ">=net-dialup/freeradius-1.0.2-r3"
SUSE Linux has released advisory SUSE-SR:2005:014 to address this and other issues. Please see the referenced advisory for more information.
RedHat has released advisory RHSA-2005:524-05 and fixes for Enterprise Linux. Please see the referenced advisory for links to fixes.
Fedora advisory FEDORA-2005-807 is available to address this issue in Fedora Core 3.
FreeRADIUS FreeRADIUS 1.0.2