Lucene search
Gentoo FoundationMGASA-2022-0482HistoryDec 31, 2022 - 1:39 a.m.
Updated freeradius packages fix security vulnerability
2022-12-3101:39:00
Gentoo Foundation
advisories.mageia.org
35
freeradius
security vulnerability
information leakage
eap-pwd
eap-sim
abinary data
packages fix
CVSS3
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
EPSS
0.002
Percentile
53.6%
Information leakage in EAP-PWD. (CVE-2022-41859) Crash on unknown option in EAP-SIM. (CVE-2022-41860) Crash on invalid abinary data. (CVE-2022-41861)
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Mageia | 8 | noarch | freeradius | < 3.0.22-1.1 | freeradius-3.0.22-1.1.mga8 |
Related
debian
debian
[SECURITY] [DLA 3342-1] freeradius security update
2023-02-24 16:29:58
redhat
redhat
(RHSA-2023:2166) Moderate: freeradius security and bug fix update
2023-05-09 05:02:09
(RHSA-2023:2870) Moderate: freeradius:3.0 security update
2023-05-16 05:57:04
nessus
nessus
RHEL 9 : freeradius (RHSA-2023:2166)
2023-05-12 00:00:00
SUSE SLES15 Security Update : freeradius-server (SUSE-SU-2022:4620-1)
2022-12-28 00:00:00
SUSE SLES15 Security Update : freeradius-server (SUSE-SU-2022:4626-1)
2022-12-28 00:00:00
osv
osv
Moderate: freeradius:3.0 security update
2023-05-16 00:00:00
Moderate: freeradius security and bug fix update
2023-05-09 00:00:00
freeradius-server-3.2.3-2.1 on GA media
2024-06-15 00:00:00
almalinux
almalinux
Moderate: freeradius security and bug fix update
2023-05-09 00:00:00
Moderate: freeradius:3.0 security update
2023-05-16 00:00:00
oraclelinux
oraclelinux
freeradius security and bug fix update
2023-05-15 00:00:00
freeradius:3.0 security update
2023-05-24 00:00:00
fedora
fedora
[SECURITY] Fedora 36 Update: freeradius-3.0.26-1.fc36
2022-12-16 01:43:43
openvas
openvas
Debian: Security Advisory (DLA-3342-1)
2023-02-25 00:00:00
SUSE: Security Advisory (SUSE-SU-2023:0135-1)
2023-01-26 00:00:00
SUSE: Security Advisory (SUSE-SU-2022:4621-1)
2022-12-28 00:00:00
amazon
amazon
Medium: freeradius
2023-03-02 21:50:00
Medium: freeradius
2023-03-02 20:22:00
ubuntu
ubuntu
FreeRADIUS vulnerabilities
2023-01-04 00:00:00
redhatcve
redhatcve
nvd
nvd
alpinelinux
alpinelinux
ubuntucve
ubuntucve
cvelist
cvelist
veracode
veracode
Denial Of Service (DoS)
2023-03-12 08:48:38
Information Disclosure
2023-03-12 08:47:02
Denial Of Service (DoS)
2023-03-12 08:48:40
cve
cve
debiancve
debiancve
prion
prion
Design/Logic Flaw
2023-01-17 18:15:00
Null pointer dereference
2023-01-17 18:15:00
Information disclosure
2023-01-17 18:15:00
cbl_mariner
cbl_mariner
CVE-2022-41861 affecting package freeradius for versions less than 3.2.3-1
2023-10-11 03:02:00
CVE-2022-41860 affecting package freeradius for versions less than 3.2.3-1
2023-10-11 03:02:00
ics
ics
Siemens SCALANCE XCM-/XRM-300
2024-02-15 12:00:00
CVSS3
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
EPSS
0.002
Percentile
53.6%
Related for MGASA-2022-0482