Lucene search
RedHatRHSA-2023:2870HistoryMay 16, 2023 - 5:57 a.m.
(RHSA-2023:2870) Moderate: freeradius:3.0 security update
2023-05-1605:57:04
access.redhat.com
9
moderate
freeradius
information leakage
eap-pwd
eap-sim
binary data
cve-2022-41859
cve-2022-41860
cve-2022-41861
red hat enterprise linux 8.8
release notes
FreeRADIUS is a high-performance and highly configurable free Remote Authentication Dial In User Service (RADIUS) server, designed to allow centralized authentication and authorization for a network.
Security Fix(es):
-
freeradius: Information leakage in EAP-PWD (CVE-2022-41859)
-
freeradius: Crash on unknown option in EAP-SIM (CVE-2022-41860)
-
freeradius: Crash on invalid abinary data (CVE-2022-41861)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Additional Changes:
For detailed information on changes in this release, see the Red Hat Enterprise Linux 8.8 Release Notes linked from the References section.
Related
nessus
nessus
RHEL 9 : freeradius (RHSA-2023:2166)
2023-05-12 00:00:00
AlmaLinux 9 : freeradius (ALSA-2023:2166)
2023-05-14 00:00:00
Oracle Linux 9 : freeradius (ELSA-2023-2166)
2023-05-15 00:00:00
redhat
redhat
(RHSA-2023:2166) Moderate: freeradius security and bug fix update
2023-05-09 05:02:09
debian
debian
[SECURITY] [DLA 3342-1] freeradius security update
2023-02-24 16:29:58
oraclelinux
oraclelinux
freeradius:3.0 security update
2023-05-24 00:00:00
freeradius security and bug fix update
2023-05-15 00:00:00
openvas
openvas
SUSE: Security Advisory (SUSE-SU-2023:0124-1)
2023-01-24 00:00:00
Fedora: Security Advisory for freeradius (FEDORA-2022-98832b2cc2)
2022-12-16 00:00:00
SUSE: Security Advisory (SUSE-SU-2022:4622-1)
2022-12-28 00:00:00
mageia
mageia
Updated freeradius packages fix security vulnerability
2022-12-31 01:39:00
osv
osv
freeradius - security update
2023-02-24 00:00:00
Moderate: freeradius:3.0 security update
2023-05-16 00:00:00
Moderate: freeradius security and bug fix update
2023-05-09 00:00:00
amazon
amazon
Medium: freeradius
2023-03-02 21:50:00
Medium: freeradius
2023-03-02 20:22:00
almalinux
almalinux
Moderate: freeradius:3.0 security update
2023-05-16 00:00:00
Moderate: freeradius security and bug fix update
2023-05-09 00:00:00
fedora
fedora
[SECURITY] Fedora 36 Update: freeradius-3.0.26-1.fc36
2022-12-16 01:43:43
ubuntu
ubuntu
FreeRADIUS vulnerabilities
2023-01-04 00:00:00
redhatcve
redhatcve
cve
cve
veracode
veracode
Denial Of Service (DoS)
2023-03-12 08:48:38
Information Disclosure
2023-03-12 08:47:02
Denial Of Service (DoS)
2023-03-12 08:48:40
nvd
nvd
alpinelinux
alpinelinux
ubuntucve
ubuntucve
cvelist
cvelist
cbl_mariner
cbl_mariner
CVE-2022-41861 affecting package freeradius for versions less than 3.2.3-1
2023-10-11 03:02:00
CVE-2022-41860 affecting package freeradius for versions less than 3.2.3-1
2023-10-11 03:02:00
debiancve
debiancve
prion
prion
Design/Logic Flaw
2023-01-17 18:15:00
Null pointer dereference
2023-01-17 18:15:00
Information disclosure
2023-01-17 18:15:00
ics
ics
Siemens SCALANCE XCM-/XRM-300
2024-02-15 12:00:00