Lucene search
Veracode Vulnerability DatabaseVERACODE:27452HistoryOct 01, 2020 - 3:53 a.m.
Buffer Over-read
2020-10-0103:53:18
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
14
0.003 Low
EPSS
Percentile
68.6%
freeradius is heap-based buffer over-read. It is possible due to a flaw in multithreaded BN_CTX access.
| CPE | Name | Operator | Version |
|---|---|---|---|
| freeradius | eq | 3.0.13__9.el7_5 | |
| freeradius | eq | 3.0.13__10.el7_6 | |
| freeradius | eq | 3.0.13__8.el7_4 | |
| freeradius | eq | 3.0.13__9.el7_4 |
References
lists.opensuse.org/opensuse-security-announce/2020-04/msg00039.html
access.redhat.com/documentation/en-us/red_hat_enterprise_linux/7/html/7.9_release_notes/index
access.redhat.com/errata/RHSA-2020:3984
access.redhat.com/security/updates/classification/#moderate
freeradius.org/security/
github.com/FreeRADIUS/freeradius-server/releases/tag/release_3_0_20
Related
osv
osv
Moderate: freeradius:3.0 security and bug fix update
2020-11-03 12:37:04
CVE-2019-17185
2020-03-21 01:15:12
freeradius vulnerabilities
2023-01-04 10:53:54
rocky
rocky
freeradius:3.0 security and bug fix update
2020-11-03 12:37:04
nessus
nessus
CentOS 8 : freeradius:3.0 (CESA-2020:4799)
2021-02-01 00:00:00
Rocky Linux 8 : freeradius:3.0 (RLSA-2020:4799)
2023-11-07 00:00:00
RHEL 8 : freeradius:3.0 (RHSA-2020:4799)
2020-11-04 00:00:00
openvas
openvas
Huawei EulerOS: Security Advisory for freeradius (EulerOS-SA-2020-2342)
2020-11-04 00:00:00
Huawei EulerOS: Security Advisory for freeradius (EulerOS-SA-2020-1847)
2020-08-31 00:00:00
SUSE: Security Advisory (SUSE-SU-2020:2391-1)
2021-04-19 00:00:00
nvd
nvd
CVE-2019-17185
2020-03-21 01:15:12
ubuntucve
ubuntucve
CVE-2019-17185
2020-03-21 00:00:00
redhatcve
redhatcve
CVE-2019-17185
2020-03-24 14:21:41
prion
prion
Design/Logic Flaw
2020-03-21 01:15:00
cve
cve
CVE-2019-17185
2020-03-21 01:15:12
redhat
redhat
(RHSA-2020:4799) Moderate: freeradius:3.0 security and bug fix update
2020-11-03 12:37:04
(RHSA-2020:3984) Moderate: freeradius security and bug fix update
2020-09-29 07:48:48
oraclelinux
oraclelinux
freeradius:3.0 security and bug fix update
2020-11-10 00:00:00
freeradius security and bug fix update
2020-10-06 00:00:00
almalinux
almalinux
Moderate: freeradius:3.0 security and bug fix update
2020-11-03 12:37:04
cvelist
cvelist
CVE-2019-17185
2020-03-21 00:13:05
debiancve
debiancve
CVE-2019-17185
2020-03-21 01:15:12
suse
suse
Security update for freeradius-server (moderate)
2020-04-26 00:00:00
ubuntu
ubuntu
FreeRADIUS vulnerabilities
2023-01-04 00:00:00
amazon
amazon
Medium: freeradius
2020-10-22 17:34:00
mageia
mageia
Updated freeradius packages fix security vulnerabilities
2020-01-05 18:37:51
centos
centos
freeradius security update
2020-10-20 18:02:54