Red Hat Enterprise Linux update for FreeRADIUS
Published: 2017-07-18
| Risk | High |
| Patch available | YES |
| Number of vulnerabilities | 6 |
| CVE-ID | CVE-2017-10978 CVE-2017-10979 CVE-2017-10980 CVE-2017-10981 CVE-2017-10982 CVE-2017-10983 |
| CWE-ID | CWE-119 CWE-401 CWE-125 |
| Exploitation vector | Network |
| Public exploit | N/A |
| Vulnerable software |
Red Hat Enterprise Linux for x86_64 Operating systems & Components / Operating system |
| Vendor | Red Hat Inc. |
Security Bulletin
This security bulletin contains information about 6 vulnerabilities.
1) Buffer overflow
EUVDB-ID: #VU7552
Risk: Medium
CVSSv4.0: 6.6 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Green]
CVE-ID: CVE-2017-10978
CWE-ID:
CWE-119 - Memory corruption
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker to perform a denial of service (DoS) attack.
The vulnerability exists due to boundary error in make_secret() function when processing RADIUS packets. A remote unauthenticated attacker can send a specially crafted RADIUS packet and crash the affected server.
Successful exploitation of this vulnerability may result in denial of service attack.
MitigationUpdate the affected package.
Red Hat Enterprise Linux Server 6
| SRPM | |
|---|---|
| freeradius-2.2.6-7.el6_9.src.rpm | SHA-256: 209c0389b23e1339242e1ab6a5f7d1abc70fd3272d633a8346f64a0fcdc16a07 |
| x86_64 | |
| freeradius-2.2.6-7.el6_9.x86_64.rpm | SHA-256: aeb2bb4d311f848294e93ce9a12ce867adef35524c1437e10ad9ade90e7fb3d5 |
| freeradius-debuginfo-2.2.6-7.el6_9.x86_64.rpm | SHA-256: 8e8ae24b582e4eebd029d342e1a11c11677df215e9a825a4aa24562d5f63bc7e |
| freeradius-debuginfo-2.2.6-7.el6_9.x86_64.rpm | SHA-256: 8e8ae24b582e4eebd029d342e1a11c11677df215e9a825a4aa24562d5f63bc7e |
| freeradius-krb5-2.2.6-7.el6_9.x86_64.rpm | SHA-256: 2fc74a6db71253d12dc4d4a7bb7b1bb984869386e4c16b929bf90d558dbd0f6e |
| freeradius-ldap-2.2.6-7.el6_9.x86_64.rpm | SHA-256: ae59caab0296fe602dde8000c59503c318fe7b92e430d707eaa1effafc0d230b |
| freeradius-mysql-2.2.6-7.el6_9.x86_64.rpm | SHA-256: f1bfe1e24b419c79d77daa553485bd8553baba414bc8d5b3626a5c0cab4d7bc6 |
| freeradius-perl-2.2.6-7.el6_9.x86_64.rpm | SHA-256: 35c0896bee6e439781364570fb7e631ab137272b3e87bf4cf22a48f37905364c |
| freeradius-postgresql-2.2.6-7.el6_9.x86_64.rpm | SHA-256: 7a2f723eaeb017a7276103602cdd062c7d86bb6308c1898461ccd694d564c632 |
| freeradius-python-2.2.6-7.el6_9.x86_64.rpm | SHA-256: 404d92d793638dc2045359d31727f0641f0e11e85e36900df82ab24238cb0c09 |
| freeradius-unixODBC-2.2.6-7.el6_9.x86_64.rpm | SHA-256: 7baac37777872919faef1c135a5f3f1c3ffef4c8db71135f46c9e41543eb8f1d |
| freeradius-utils-2.2.6-7.el6_9.x86_64.rpm | SHA-256: 4f8c66c8998bd6196e28ec0d28f20f4c1a8e4a2172ca496b26f670deaaec975f |
| i386 | |
| freeradius-2.2.6-7.el6_9.i686.rpm | SHA-256: 4f7067bbe960d8251abc16cb94fa696a7752e383bfffa2f0c7b51aeaf069e355 |
| freeradius-debuginfo-2.2.6-7.el6_9.i686.rpm | SHA-256: efbd907d104efbada0f4c7908aec14696d7fbc86c54b0535705a4c5ccdf49369 |
| freeradius-debuginfo-2.2.6-7.el6_9.i686.rpm | SHA-256: efbd907d104efbada0f4c7908aec14696d7fbc86c54b0535705a4c5ccdf49369 |
| freeradius-krb5-2.2.6-7.el6_9.i686.rpm | SHA-256: 7d04dc4b5e3691b4a4df388985d329903ed4ed841bd2cb5874c8ea3a51cdbbe9 |
| freeradius-ldap-2.2.6-7.el6_9.i686.rpm | SHA-256: 3a61799edb0b4f32e99832e613e947b19e9872425eb0a69e769c761f8343dee8 |
| freeradius-mysql-2.2.6-7.el6_9.i686.rpm | SHA-256: 4601caf86377b73c9389727e40a991594e46e83d646c65e91299cac412ef1419 |
| freeradius-perl-2.2.6-7.el6_9.i686.rpm | SHA-256: d0a4383e4bd71c1d81679084df74284143f262911079bfc038d22a3dc7a4a258 |
| freeradius-postgresql-2.2.6-7.el6_9.i686.rpm | SHA-256: 387d4e461cb5d20a802d3a7f72e21ebc31d967a0732799c035b0cced6fdf87f9 |
| freeradius-python-2.2.6-7.el6_9.i686.rpm | SHA-256: 62624739427fffe37b04c965dbef322b23856c985f0ee11b1f33b4c38f0a4fad |
| freeradius-unixODBC-2.2.6-7.el6_9.i686.rpm | SHA-256: 9e14faa1674c8f40b7772b1db2a02dedb0985043f0f810df4437624eb3120ed7 |
| freeradius-utils-2.2.6-7.el6_9.i686.rpm | SHA-256: 7119999481b3c0dce85293734f5422d9b7723a0d7b1cbfb91ac92a13d3be8525 |
Red Hat Enterprise Linux Workstation 6
| SRPM | |
|---|---|
| freeradius-2.2.6-7.el6_9.src.rpm | SHA-256: 209c0389b23e1339242e1ab6a5f7d1abc70fd3272d633a8346f64a0fcdc16a07 |
| x86_64 | |
| freeradius-2.2.6-7.el6_9.x86_64.rpm | SHA-256: aeb2bb4d311f848294e93ce9a12ce867adef35524c1437e10ad9ade90e7fb3d5 |
| freeradius-debuginfo-2.2.6-7.el6_9.x86_64.rpm | SHA-256: 8e8ae24b582e4eebd029d342e1a11c11677df215e9a825a4aa24562d5f63bc7e |
| freeradius-debuginfo-2.2.6-7.el6_9.x86_64.rpm | SHA-256: 8e8ae24b582e4eebd029d342e1a11c11677df215e9a825a4aa24562d5f63bc7e |
| freeradius-krb5-2.2.6-7.el6_9.x86_64.rpm | SHA-256: 2fc74a6db71253d12dc4d4a7bb7b1bb984869386e4c16b929bf90d558dbd0f6e |
| freeradius-ldap-2.2.6-7.el6_9.x86_64.rpm | SHA-256: ae59caab0296fe602dde8000c59503c318fe7b92e430d707eaa1effafc0d230b |
| freeradius-mysql-2.2.6-7.el6_9.x86_64.rpm | SHA-256: f1bfe1e24b419c79d77daa553485bd8553baba414bc8d5b3626a5c0cab4d7bc6 |
| freeradius-perl-2.2.6-7.el6_9.x86_64.rpm | SHA-256: 35c0896bee6e439781364570fb7e631ab137272b3e87bf4cf22a48f37905364c |
| freeradius-postgresql-2.2.6-7.el6_9.x86_64.rpm | SHA-256: 7a2f723eaeb017a7276103602cdd062c7d86bb6308c1898461ccd694d564c632 |
| freeradius-python-2.2.6-7.el6_9.x86_64.rpm | SHA-256: 404d92d793638dc2045359d31727f0641f0e11e85e36900df82ab24238cb0c09 |
| freeradius-unixODBC-2.2.6-7.el6_9.x86_64.rpm | SHA-256: 7baac37777872919faef1c135a5f3f1c3ffef4c8db71135f46c9e41543eb8f1d |
| freeradius-utils-2.2.6-7.el6_9.x86_64.rpm | SHA-256: 4f8c66c8998bd6196e28ec0d28f20f4c1a8e4a2172ca496b26f670deaaec975f |
| i386 | |
| freeradius-2.2.6-7.el6_9.i686.rpm | SHA-256: 4f7067bbe960d8251abc16cb94fa696a7752e383bfffa2f0c7b51aeaf069e355 |
| freeradius-debuginfo-2.2.6-7.el6_9.i686.rpm | SHA-256: efbd907d104efbada0f4c7908aec14696d7fbc86c54b0535705a4c5ccdf49369 |
| freeradius-debuginfo-2.2.6-7.el6_9.i686.rpm | SHA-256: efbd907d104efbada0f4c7908aec14696d7fbc86c54b0535705a4c5ccdf49369 |
| freeradius-krb5-2.2.6-7.el6_9.i686.rpm | SHA-256: 7d04dc4b5e3691b4a4df388985d329903ed4ed841bd2cb5874c8ea3a51cdbbe9 |
| freeradius-ldap-2.2.6-7.el6_9.i686.rpm | SHA-256: 3a61799edb0b4f32e99832e613e947b19e9872425eb0a69e769c761f8343dee8 |
| freeradius-mysql-2.2.6-7.el6_9.i686.rpm | SHA-256: 4601caf86377b73c9389727e40a991594e46e83d646c65e91299cac412ef1419 |
| freeradius-perl-2.2.6-7.el6_9.i686.rpm | SHA-256: d0a4383e4bd71c1d81679084df74284143f262911079bfc038d22a3dc7a4a258 |
| freeradius-postgresql-2.2.6-7.el6_9.i686.rpm | SHA-256: 387d4e461cb5d20a802d3a7f72e21ebc31d967a0732799c035b0cced6fdf87f9 |
| freeradius-python-2.2.6-7.el6_9.i686.rpm | SHA-256: 62624739427fffe37b04c965dbef322b23856c985f0ee11b1f33b4c38f0a4fad |
| freeradius-unixODBC-2.2.6-7.el6_9.i686.rpm | SHA-256: 9e14faa1674c8f40b7772b1db2a02dedb0985043f0f810df4437624eb3120ed7 |
| freeradius-utils-2.2.6-7.el6_9.i686.rpm | SHA-256: 7119999481b3c0dce85293734f5422d9b7723a0d7b1cbfb91ac92a13d3be8525 |
Red Hat Enterprise Linux for IBM z Systems 6
| SRPM | |
|---|---|
| freeradius-2.2.6-7.el6_9.src.rpm | SHA-256: 209c0389b23e1339242e1ab6a5f7d1abc70fd3272d633a8346f64a0fcdc16a07 |
| s390x | |
| freeradius-2.2.6-7.el6_9.s390x.rpm | SHA-256: 4ac2c30a693d38502c1f9530f46270808b34b40748c202a26085679a2d2889a8 |
| freeradius-debuginfo-2.2.6-7.el6_9.s390x.rpm | SHA-256: 2f0bf926aa4ca89f45f20df4df28ce2d2d737d0a4bda123e62445a46c422e119 |
| freeradius-debuginfo-2.2.6-7.el6_9.s390x.rpm | SHA-256: 2f0bf926aa4ca89f45f20df4df28ce2d2d737d0a4bda123e62445a46c422e119 |
| freeradius-krb5-2.2.6-7.el6_9.s390x.rpm | SHA-256: 0749f478f102ffc6e72397558be63eed5d358233c6cfaec704774f2186831c62 |
| freeradius-ldap-2.2.6-7.el6_9.s390x.rpm | SHA-256: 3636b84aa00ad6fc3df09ea02183f7155657f7a7141c3e1060cd82ddccfaa4bd |
| freeradius-mysql-2.2.6-7.el6_9.s390x.rpm | SHA-256: 180d921360eac5db7ae00cb53e7bdef2069d3e74d18c3a046f1aca7fb7466449 |
| freeradius-perl-2.2.6-7.el6_9.s390x.rpm | SHA-256: 45e835cb6774ce5b45e1dd7837cb425dcc19576aab699082cd078d61cdb5267f |
| freeradius-postgresql-2.2.6-7.el6_9.s390x.rpm | SHA-256: efafd74e4b93a4d3fb886518efc555582aa815fb1a39369e68c990858841b045 |
| freeradius-python-2.2.6-7.el6_9.s390x.rpm | SHA-256: 469764b212c6395a1201b3de42dd413f5328bd604765d43672dfcf74773fce4f |
| freeradius-unixODBC-2.2.6-7.el6_9.s390x.rpm | SHA-256: ac79ce9b6947b2f9a2ad770c0ef0a2675e2c07c489f88c3b844f437cbc16413f |
| freeradius-utils-2.2.6-7.el6_9.s390x.rpm | SHA-256: 12397b50bf13f8f06c5321e37f973ee89a24285d691153df6a147116ea70fc31 |
Red Hat Enterprise Linux for Power, big endian 6
| SRPM | |
|---|---|
| freeradius-2.2.6-7.el6_9.src.rpm | SHA-256: 209c0389b23e1339242e1ab6a5f7d1abc70fd3272d633a8346f64a0fcdc16a07 |
| ppc64 | |
| freeradius-2.2.6-7.el6_9.ppc64.rpm | SHA-256: 9631ecc088619efb9585d1016533704dc671b63ccb91bb31dbca4fe662d0d2d7 |
| freeradius-debuginfo-2.2.6-7.el6_9.ppc64.rpm | SHA-256: 19ee6652290890339a28715950f5fc021655af8c10c777929087188c9a1fbb75 |
| freeradius-debuginfo-2.2.6-7.el6_9.ppc64.rpm | SHA-256: 19ee6652290890339a28715950f5fc021655af8c10c777929087188c9a1fbb75 |
| freeradius-krb5-2.2.6-7.el6_9.ppc64.rpm | SHA-256: 764e68452c191509edae82a6991c53af499b4f14525a65f87b23867bef347ff4 |
| freeradius-ldap-2.2.6-7.el6_9.ppc64.rpm | SHA-256: 1ac72151a6c9225fa6d9baaea7c23e403b3b29f2eb19c7375cb423c0c2771fcd |
| freeradius-mysql-2.2.6-7.el6_9.ppc64.rpm | SHA-256: e23ec0c7c7b8315ad1f150e2e152435f1f9e6cec622dea583563e5615bce6b4e |
| freeradius-perl-2.2.6-7.el6_9.ppc64.rpm | SHA-256: 43d31aa3b2baade49e2338a81e3329e64ceb5c669f7ff38e90612a25e02e018c |
| freeradius-postgresql-2.2.6-7.el6_9.ppc64.rpm | SHA-256: c8132d2e89cbdf48582a68d54028f0afee9ec02d126431ae4780498687fe6d1e |
| freeradius-python-2.2.6-7.el6_9.ppc64.rpm | SHA-256: 781062c2b14443c223f76481334e4386a0178ca5d0655851fc92f49c698c928a |
| freeradius-unixODBC-2.2.6-7.el6_9.ppc64.rpm | SHA-256: fd10bd1ea36c494df664efa3e389bfc79da908bb1201015734d6e0634f42e942 |
| freeradius-utils-2.2.6-7.el6_9.ppc64.rpm | SHA-256: 68be1265067942daf842c481ba93c3a9e8469899734a1192f91f74ed69b11740 |
Red Hat Enterprise Linux for x86_64: 6
CPE2.3 External linkshttps://access.redhat.com/errata/RHSA-2017:1759
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
2) Buffer overflow
EUVDB-ID: #VU7553
Risk: High
CVSSv4.0: 8.1 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Amber]
CVE-ID: CVE-2017-10979
CWE-ID:
CWE-119 - Memory corruption
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker to execute arbitrary code on the target system.
The vulnerability exists due to boundary error when processing RADIUS packets in rad_coalesce() function. A remote unauthenticated attacker can send a specially crafted packet with iverly long WiMAX attribute, trigger buffer overflow and crash the affected server or execute arbitrary code on the target system.
Successful exploitation of this vulnerability may result in complete compromise of vulnerable system.
MitigationUpdate the affected package.
Red Hat Enterprise Linux Server 6
| SRPM | |
|---|---|
| freeradius-2.2.6-7.el6_9.src.rpm | SHA-256: 209c0389b23e1339242e1ab6a5f7d1abc70fd3272d633a8346f64a0fcdc16a07 |
| x86_64 | |
| freeradius-2.2.6-7.el6_9.x86_64.rpm | SHA-256: aeb2bb4d311f848294e93ce9a12ce867adef35524c1437e10ad9ade90e7fb3d5 |
| freeradius-debuginfo-2.2.6-7.el6_9.x86_64.rpm | SHA-256: 8e8ae24b582e4eebd029d342e1a11c11677df215e9a825a4aa24562d5f63bc7e |
| freeradius-debuginfo-2.2.6-7.el6_9.x86_64.rpm | SHA-256: 8e8ae24b582e4eebd029d342e1a11c11677df215e9a825a4aa24562d5f63bc7e |
| freeradius-krb5-2.2.6-7.el6_9.x86_64.rpm | SHA-256: 2fc74a6db71253d12dc4d4a7bb7b1bb984869386e4c16b929bf90d558dbd0f6e |
| freeradius-ldap-2.2.6-7.el6_9.x86_64.rpm | SHA-256: ae59caab0296fe602dde8000c59503c318fe7b92e430d707eaa1effafc0d230b |
| freeradius-mysql-2.2.6-7.el6_9.x86_64.rpm | SHA-256: f1bfe1e24b419c79d77daa553485bd8553baba414bc8d5b3626a5c0cab4d7bc6 |
| freeradius-perl-2.2.6-7.el6_9.x86_64.rpm | SHA-256: 35c0896bee6e439781364570fb7e631ab137272b3e87bf4cf22a48f37905364c |
| freeradius-postgresql-2.2.6-7.el6_9.x86_64.rpm | SHA-256: 7a2f723eaeb017a7276103602cdd062c7d86bb6308c1898461ccd694d564c632 |
| freeradius-python-2.2.6-7.el6_9.x86_64.rpm | SHA-256: 404d92d793638dc2045359d31727f0641f0e11e85e36900df82ab24238cb0c09 |
| freeradius-unixODBC-2.2.6-7.el6_9.x86_64.rpm | SHA-256: 7baac37777872919faef1c135a5f3f1c3ffef4c8db71135f46c9e41543eb8f1d |
| freeradius-utils-2.2.6-7.el6_9.x86_64.rpm | SHA-256: 4f8c66c8998bd6196e28ec0d28f20f4c1a8e4a2172ca496b26f670deaaec975f |
| i386 | |
| freeradius-2.2.6-7.el6_9.i686.rpm | SHA-256: 4f7067bbe960d8251abc16cb94fa696a7752e383bfffa2f0c7b51aeaf069e355 |
| freeradius-debuginfo-2.2.6-7.el6_9.i686.rpm | SHA-256: efbd907d104efbada0f4c7908aec14696d7fbc86c54b0535705a4c5ccdf49369 |
| freeradius-debuginfo-2.2.6-7.el6_9.i686.rpm | SHA-256: efbd907d104efbada0f4c7908aec14696d7fbc86c54b0535705a4c5ccdf49369 |
| freeradius-krb5-2.2.6-7.el6_9.i686.rpm | SHA-256: 7d04dc4b5e3691b4a4df388985d329903ed4ed841bd2cb5874c8ea3a51cdbbe9 |
| freeradius-ldap-2.2.6-7.el6_9.i686.rpm | SHA-256: 3a61799edb0b4f32e99832e613e947b19e9872425eb0a69e769c761f8343dee8 |
| freeradius-mysql-2.2.6-7.el6_9.i686.rpm | SHA-256: 4601caf86377b73c9389727e40a991594e46e83d646c65e91299cac412ef1419 |
| freeradius-perl-2.2.6-7.el6_9.i686.rpm | SHA-256: d0a4383e4bd71c1d81679084df74284143f262911079bfc038d22a3dc7a4a258 |
| freeradius-postgresql-2.2.6-7.el6_9.i686.rpm | SHA-256: 387d4e461cb5d20a802d3a7f72e21ebc31d967a0732799c035b0cced6fdf87f9 |
| freeradius-python-2.2.6-7.el6_9.i686.rpm | SHA-256: 62624739427fffe37b04c965dbef322b23856c985f0ee11b1f33b4c38f0a4fad |
| freeradius-unixODBC-2.2.6-7.el6_9.i686.rpm | SHA-256: 9e14faa1674c8f40b7772b1db2a02dedb0985043f0f810df4437624eb3120ed7 |
| freeradius-utils-2.2.6-7.el6_9.i686.rpm | SHA-256: 7119999481b3c0dce85293734f5422d9b7723a0d7b1cbfb91ac92a13d3be8525 |
Red Hat Enterprise Linux Workstation 6
| SRPM | |
|---|---|
| freeradius-2.2.6-7.el6_9.src.rpm | SHA-256: 209c0389b23e1339242e1ab6a5f7d1abc70fd3272d633a8346f64a0fcdc16a07 |
| x86_64 | |
| freeradius-2.2.6-7.el6_9.x86_64.rpm | SHA-256: aeb2bb4d311f848294e93ce9a12ce867adef35524c1437e10ad9ade90e7fb3d5 |
| freeradius-debuginfo-2.2.6-7.el6_9.x86_64.rpm | SHA-256: 8e8ae24b582e4eebd029d342e1a11c11677df215e9a825a4aa24562d5f63bc7e |
| freeradius-debuginfo-2.2.6-7.el6_9.x86_64.rpm | SHA-256: 8e8ae24b582e4eebd029d342e1a11c11677df215e9a825a4aa24562d5f63bc7e |
| freeradius-krb5-2.2.6-7.el6_9.x86_64.rpm | SHA-256: 2fc74a6db71253d12dc4d4a7bb7b1bb984869386e4c16b929bf90d558dbd0f6e |
| freeradius-ldap-2.2.6-7.el6_9.x86_64.rpm | SHA-256: ae59caab0296fe602dde8000c59503c318fe7b92e430d707eaa1effafc0d230b |
| freeradius-mysql-2.2.6-7.el6_9.x86_64.rpm | SHA-256: f1bfe1e24b419c79d77daa553485bd8553baba414bc8d5b3626a5c0cab4d7bc6 |
| freeradius-perl-2.2.6-7.el6_9.x86_64.rpm | SHA-256: 35c0896bee6e439781364570fb7e631ab137272b3e87bf4cf22a48f37905364c |
| freeradius-postgresql-2.2.6-7.el6_9.x86_64.rpm | SHA-256: 7a2f723eaeb017a7276103602cdd062c7d86bb6308c1898461ccd694d564c632 |
| freeradius-python-2.2.6-7.el6_9.x86_64.rpm | SHA-256: 404d92d793638dc2045359d31727f0641f0e11e85e36900df82ab24238cb0c09 |
| freeradius-unixODBC-2.2.6-7.el6_9.x86_64.rpm | SHA-256: 7baac37777872919faef1c135a5f3f1c3ffef4c8db71135f46c9e41543eb8f1d |
| freeradius-utils-2.2.6-7.el6_9.x86_64.rpm | SHA-256: 4f8c66c8998bd6196e28ec0d28f20f4c1a8e4a2172ca496b26f670deaaec975f |
| i386 | |
| freeradius-2.2.6-7.el6_9.i686.rpm | SHA-256: 4f7067bbe960d8251abc16cb94fa696a7752e383bfffa2f0c7b51aeaf069e355 |
| freeradius-debuginfo-2.2.6-7.el6_9.i686.rpm | SHA-256: efbd907d104efbada0f4c7908aec14696d7fbc86c54b0535705a4c5ccdf49369 |
| freeradius-debuginfo-2.2.6-7.el6_9.i686.rpm | SHA-256: efbd907d104efbada0f4c7908aec14696d7fbc86c54b0535705a4c5ccdf49369 |
| freeradius-krb5-2.2.6-7.el6_9.i686.rpm | SHA-256: 7d04dc4b5e3691b4a4df388985d329903ed4ed841bd2cb5874c8ea3a51cdbbe9 |
| freeradius-ldap-2.2.6-7.el6_9.i686.rpm | SHA-256: 3a61799edb0b4f32e99832e613e947b19e9872425eb0a69e769c761f8343dee8 |
| freeradius-mysql-2.2.6-7.el6_9.i686.rpm | SHA-256: 4601caf86377b73c9389727e40a991594e46e83d646c65e91299cac412ef1419 |
| freeradius-perl-2.2.6-7.el6_9.i686.rpm | SHA-256: d0a4383e4bd71c1d81679084df74284143f262911079bfc038d22a3dc7a4a258 |
| freeradius-postgresql-2.2.6-7.el6_9.i686.rpm | SHA-256: 387d4e461cb5d20a802d3a7f72e21ebc31d967a0732799c035b0cced6fdf87f9 |
| freeradius-python-2.2.6-7.el6_9.i686.rpm | SHA-256: 62624739427fffe37b04c965dbef322b23856c985f0ee11b1f33b4c38f0a4fad |
| freeradius-unixODBC-2.2.6-7.el6_9.i686.rpm | SHA-256: 9e14faa1674c8f40b7772b1db2a02dedb0985043f0f810df4437624eb3120ed7 |
| freeradius-utils-2.2.6-7.el6_9.i686.rpm | SHA-256: 7119999481b3c0dce85293734f5422d9b7723a0d7b1cbfb91ac92a13d3be8525 |
Red Hat Enterprise Linux for IBM z Systems 6
| SRPM | |
|---|---|
| freeradius-2.2.6-7.el6_9.src.rpm | SHA-256: 209c0389b23e1339242e1ab6a5f7d1abc70fd3272d633a8346f64a0fcdc16a07 |
| s390x | |
| freeradius-2.2.6-7.el6_9.s390x.rpm | SHA-256: 4ac2c30a693d38502c1f9530f46270808b34b40748c202a26085679a2d2889a8 |
| freeradius-debuginfo-2.2.6-7.el6_9.s390x.rpm | SHA-256: 2f0bf926aa4ca89f45f20df4df28ce2d2d737d0a4bda123e62445a46c422e119 |
| freeradius-debuginfo-2.2.6-7.el6_9.s390x.rpm | SHA-256: 2f0bf926aa4ca89f45f20df4df28ce2d2d737d0a4bda123e62445a46c422e119 |
| freeradius-krb5-2.2.6-7.el6_9.s390x.rpm | SHA-256: 0749f478f102ffc6e72397558be63eed5d358233c6cfaec704774f2186831c62 |
| freeradius-ldap-2.2.6-7.el6_9.s390x.rpm | SHA-256: 3636b84aa00ad6fc3df09ea02183f7155657f7a7141c3e1060cd82ddccfaa4bd |
| freeradius-mysql-2.2.6-7.el6_9.s390x.rpm | SHA-256: 180d921360eac5db7ae00cb53e7bdef2069d3e74d18c3a046f1aca7fb7466449 |
| freeradius-perl-2.2.6-7.el6_9.s390x.rpm | SHA-256: 45e835cb6774ce5b45e1dd7837cb425dcc19576aab699082cd078d61cdb5267f |
| freeradius-postgresql-2.2.6-7.el6_9.s390x.rpm | SHA-256: efafd74e4b93a4d3fb886518efc555582aa815fb1a39369e68c990858841b045 |
| freeradius-python-2.2.6-7.el6_9.s390x.rpm | SHA-256: 469764b212c6395a1201b3de42dd413f5328bd604765d43672dfcf74773fce4f |
| freeradius-unixODBC-2.2.6-7.el6_9.s390x.rpm | SHA-256: ac79ce9b6947b2f9a2ad770c0ef0a2675e2c07c489f88c3b844f437cbc16413f |
| freeradius-utils-2.2.6-7.el6_9.s390x.rpm | SHA-256: 12397b50bf13f8f06c5321e37f973ee89a24285d691153df6a147116ea70fc31 |
Red Hat Enterprise Linux for Power, big endian 6
| SRPM | |
|---|---|
| freeradius-2.2.6-7.el6_9.src.rpm | SHA-256: 209c0389b23e1339242e1ab6a5f7d1abc70fd3272d633a8346f64a0fcdc16a07 |
| ppc64 | |
| freeradius-2.2.6-7.el6_9.ppc64.rpm | SHA-256: 9631ecc088619efb9585d1016533704dc671b63ccb91bb31dbca4fe662d0d2d7 |
| freeradius-debuginfo-2.2.6-7.el6_9.ppc64.rpm | SHA-256: 19ee6652290890339a28715950f5fc021655af8c10c777929087188c9a1fbb75 |
| freeradius-debuginfo-2.2.6-7.el6_9.ppc64.rpm | SHA-256: 19ee6652290890339a28715950f5fc021655af8c10c777929087188c9a1fbb75 |
| freeradius-krb5-2.2.6-7.el6_9.ppc64.rpm | SHA-256: 764e68452c191509edae82a6991c53af499b4f14525a65f87b23867bef347ff4 |
| freeradius-ldap-2.2.6-7.el6_9.ppc64.rpm | SHA-256: 1ac72151a6c9225fa6d9baaea7c23e403b3b29f2eb19c7375cb423c0c2771fcd |
| freeradius-mysql-2.2.6-7.el6_9.ppc64.rpm | SHA-256: e23ec0c7c7b8315ad1f150e2e152435f1f9e6cec622dea583563e5615bce6b4e |
| freeradius-perl-2.2.6-7.el6_9.ppc64.rpm | SHA-256: 43d31aa3b2baade49e2338a81e3329e64ceb5c669f7ff38e90612a25e02e018c |
| freeradius-postgresql-2.2.6-7.el6_9.ppc64.rpm | SHA-256: c8132d2e89cbdf48582a68d54028f0afee9ec02d126431ae4780498687fe6d1e |
| freeradius-python-2.2.6-7.el6_9.ppc64.rpm | SHA-256: 781062c2b14443c223f76481334e4386a0178ca5d0655851fc92f49c698c928a |
| freeradius-unixODBC-2.2.6-7.el6_9.ppc64.rpm | SHA-256: fd10bd1ea36c494df664efa3e389bfc79da908bb1201015734d6e0634f42e942 |
| freeradius-utils-2.2.6-7.el6_9.ppc64.rpm | SHA-256: 68be1265067942daf842c481ba93c3a9e8469899734a1192f91f74ed69b11740 |
Red Hat Enterprise Linux for x86_64: 6
CPE2.3 External linkshttps://access.redhat.com/errata/RHSA-2017:1759
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
3) Memory leak
EUVDB-ID: #VU7554
Risk: Low
CVSSv4.0: 4.9 [CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]
CVE-ID: CVE-2017-10980
CWE-ID:
CWE-401 - Missing release of memory after effective lifetime
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker to perform a denial of service (DoS) attack.
The vulnerability exists due to memory leak in decode_tlv() function when processing DHCP packets. A remote attacker on local network can send specially crafted DHCP packets with option 82 and multiple sub-options to vulnerable system and trigger denial of service attack.
MitigationUpdate the affected package.
Red Hat Enterprise Linux Server 6
| SRPM | |
|---|---|
| freeradius-2.2.6-7.el6_9.src.rpm | SHA-256: 209c0389b23e1339242e1ab6a5f7d1abc70fd3272d633a8346f64a0fcdc16a07 |
| x86_64 | |
| freeradius-2.2.6-7.el6_9.x86_64.rpm | SHA-256: aeb2bb4d311f848294e93ce9a12ce867adef35524c1437e10ad9ade90e7fb3d5 |
| freeradius-debuginfo-2.2.6-7.el6_9.x86_64.rpm | SHA-256: 8e8ae24b582e4eebd029d342e1a11c11677df215e9a825a4aa24562d5f63bc7e |
| freeradius-debuginfo-2.2.6-7.el6_9.x86_64.rpm | SHA-256: 8e8ae24b582e4eebd029d342e1a11c11677df215e9a825a4aa24562d5f63bc7e |
| freeradius-krb5-2.2.6-7.el6_9.x86_64.rpm | SHA-256: 2fc74a6db71253d12dc4d4a7bb7b1bb984869386e4c16b929bf90d558dbd0f6e |
| freeradius-ldap-2.2.6-7.el6_9.x86_64.rpm | SHA-256: ae59caab0296fe602dde8000c59503c318fe7b92e430d707eaa1effafc0d230b |
| freeradius-mysql-2.2.6-7.el6_9.x86_64.rpm | SHA-256: f1bfe1e24b419c79d77daa553485bd8553baba414bc8d5b3626a5c0cab4d7bc6 |
| freeradius-perl-2.2.6-7.el6_9.x86_64.rpm | SHA-256: 35c0896bee6e439781364570fb7e631ab137272b3e87bf4cf22a48f37905364c |
| freeradius-postgresql-2.2.6-7.el6_9.x86_64.rpm | SHA-256: 7a2f723eaeb017a7276103602cdd062c7d86bb6308c1898461ccd694d564c632 |
| freeradius-python-2.2.6-7.el6_9.x86_64.rpm | SHA-256: 404d92d793638dc2045359d31727f0641f0e11e85e36900df82ab24238cb0c09 |
| freeradius-unixODBC-2.2.6-7.el6_9.x86_64.rpm | SHA-256: 7baac37777872919faef1c135a5f3f1c3ffef4c8db71135f46c9e41543eb8f1d |
| freeradius-utils-2.2.6-7.el6_9.x86_64.rpm | SHA-256: 4f8c66c8998bd6196e28ec0d28f20f4c1a8e4a2172ca496b26f670deaaec975f |
| i386 | |
| freeradius-2.2.6-7.el6_9.i686.rpm | SHA-256: 4f7067bbe960d8251abc16cb94fa696a7752e383bfffa2f0c7b51aeaf069e355 |
| freeradius-debuginfo-2.2.6-7.el6_9.i686.rpm | SHA-256: efbd907d104efbada0f4c7908aec14696d7fbc86c54b0535705a4c5ccdf49369 |
| freeradius-debuginfo-2.2.6-7.el6_9.i686.rpm | SHA-256: efbd907d104efbada0f4c7908aec14696d7fbc86c54b0535705a4c5ccdf49369 |
| freeradius-krb5-2.2.6-7.el6_9.i686.rpm | SHA-256: 7d04dc4b5e3691b4a4df388985d329903ed4ed841bd2cb5874c8ea3a51cdbbe9 |
| freeradius-ldap-2.2.6-7.el6_9.i686.rpm | SHA-256: 3a61799edb0b4f32e99832e613e947b19e9872425eb0a69e769c761f8343dee8 |
| freeradius-mysql-2.2.6-7.el6_9.i686.rpm | SHA-256: 4601caf86377b73c9389727e40a991594e46e83d646c65e91299cac412ef1419 |
| freeradius-perl-2.2.6-7.el6_9.i686.rpm | SHA-256: d0a4383e4bd71c1d81679084df74284143f262911079bfc038d22a3dc7a4a258 |
| freeradius-postgresql-2.2.6-7.el6_9.i686.rpm | SHA-256: 387d4e461cb5d20a802d3a7f72e21ebc31d967a0732799c035b0cced6fdf87f9 |
| freeradius-python-2.2.6-7.el6_9.i686.rpm | SHA-256: 62624739427fffe37b04c965dbef322b23856c985f0ee11b1f33b4c38f0a4fad |
| freeradius-unixODBC-2.2.6-7.el6_9.i686.rpm | SHA-256: 9e14faa1674c8f40b7772b1db2a02dedb0985043f0f810df4437624eb3120ed7 |
| freeradius-utils-2.2.6-7.el6_9.i686.rpm | SHA-256: 7119999481b3c0dce85293734f5422d9b7723a0d7b1cbfb91ac92a13d3be8525 |
Red Hat Enterprise Linux Workstation 6
| SRPM | |
|---|---|
| freeradius-2.2.6-7.el6_9.src.rpm | SHA-256: 209c0389b23e1339242e1ab6a5f7d1abc70fd3272d633a8346f64a0fcdc16a07 |
| x86_64 | |
| freeradius-2.2.6-7.el6_9.x86_64.rpm | SHA-256: aeb2bb4d311f848294e93ce9a12ce867adef35524c1437e10ad9ade90e7fb3d5 |
| freeradius-debuginfo-2.2.6-7.el6_9.x86_64.rpm | SHA-256: 8e8ae24b582e4eebd029d342e1a11c11677df215e9a825a4aa24562d5f63bc7e |
| freeradius-debuginfo-2.2.6-7.el6_9.x86_64.rpm | SHA-256: 8e8ae24b582e4eebd029d342e1a11c11677df215e9a825a4aa24562d5f63bc7e |
| freeradius-krb5-2.2.6-7.el6_9.x86_64.rpm | SHA-256: 2fc74a6db71253d12dc4d4a7bb7b1bb984869386e4c16b929bf90d558dbd0f6e |
| freeradius-ldap-2.2.6-7.el6_9.x86_64.rpm | SHA-256: ae59caab0296fe602dde8000c59503c318fe7b92e430d707eaa1effafc0d230b |
| freeradius-mysql-2.2.6-7.el6_9.x86_64.rpm | SHA-256: f1bfe1e24b419c79d77daa553485bd8553baba414bc8d5b3626a5c0cab4d7bc6 |
| freeradius-perl-2.2.6-7.el6_9.x86_64.rpm | SHA-256: 35c0896bee6e439781364570fb7e631ab137272b3e87bf4cf22a48f37905364c |
| freeradius-postgresql-2.2.6-7.el6_9.x86_64.rpm | SHA-256: 7a2f723eaeb017a7276103602cdd062c7d86bb6308c1898461ccd694d564c632 |
| freeradius-python-2.2.6-7.el6_9.x86_64.rpm | SHA-256: 404d92d793638dc2045359d31727f0641f0e11e85e36900df82ab24238cb0c09 |
| freeradius-unixODBC-2.2.6-7.el6_9.x86_64.rpm | SHA-256: 7baac37777872919faef1c135a5f3f1c3ffef4c8db71135f46c9e41543eb8f1d |
| freeradius-utils-2.2.6-7.el6_9.x86_64.rpm | SHA-256: 4f8c66c8998bd6196e28ec0d28f20f4c1a8e4a2172ca496b26f670deaaec975f |
| i386 | |
| freeradius-2.2.6-7.el6_9.i686.rpm | SHA-256: 4f7067bbe960d8251abc16cb94fa696a7752e383bfffa2f0c7b51aeaf069e355 |
| freeradius-debuginfo-2.2.6-7.el6_9.i686.rpm | SHA-256: efbd907d104efbada0f4c7908aec14696d7fbc86c54b0535705a4c5ccdf49369 |
| freeradius-debuginfo-2.2.6-7.el6_9.i686.rpm | SHA-256: efbd907d104efbada0f4c7908aec14696d7fbc86c54b0535705a4c5ccdf49369 |
| freeradius-krb5-2.2.6-7.el6_9.i686.rpm | SHA-256: 7d04dc4b5e3691b4a4df388985d329903ed4ed841bd2cb5874c8ea3a51cdbbe9 |
| freeradius-ldap-2.2.6-7.el6_9.i686.rpm | SHA-256: 3a61799edb0b4f32e99832e613e947b19e9872425eb0a69e769c761f8343dee8 |
| freeradius-mysql-2.2.6-7.el6_9.i686.rpm | SHA-256: 4601caf86377b73c9389727e40a991594e46e83d646c65e91299cac412ef1419 |
| freeradius-perl-2.2.6-7.el6_9.i686.rpm | SHA-256: d0a4383e4bd71c1d81679084df74284143f262911079bfc038d22a3dc7a4a258 |
| freeradius-postgresql-2.2.6-7.el6_9.i686.rpm | SHA-256: 387d4e461cb5d20a802d3a7f72e21ebc31d967a0732799c035b0cced6fdf87f9 |
| freeradius-python-2.2.6-7.el6_9.i686.rpm | SHA-256: 62624739427fffe37b04c965dbef322b23856c985f0ee11b1f33b4c38f0a4fad |
| freeradius-unixODBC-2.2.6-7.el6_9.i686.rpm | SHA-256: 9e14faa1674c8f40b7772b1db2a02dedb0985043f0f810df4437624eb3120ed7 |
| freeradius-utils-2.2.6-7.el6_9.i686.rpm | SHA-256: 7119999481b3c0dce85293734f5422d9b7723a0d7b1cbfb91ac92a13d3be8525 |
Red Hat Enterprise Linux for IBM z Systems 6
| SRPM | |
|---|---|
| freeradius-2.2.6-7.el6_9.src.rpm | SHA-256: 209c0389b23e1339242e1ab6a5f7d1abc70fd3272d633a8346f64a0fcdc16a07 |
| s390x | |
| freeradius-2.2.6-7.el6_9.s390x.rpm | SHA-256: 4ac2c30a693d38502c1f9530f46270808b34b40748c202a26085679a2d2889a8 |
| freeradius-debuginfo-2.2.6-7.el6_9.s390x.rpm | SHA-256: 2f0bf926aa4ca89f45f20df4df28ce2d2d737d0a4bda123e62445a46c422e119 |
| freeradius-debuginfo-2.2.6-7.el6_9.s390x.rpm | SHA-256: 2f0bf926aa4ca89f45f20df4df28ce2d2d737d0a4bda123e62445a46c422e119 |
| freeradius-krb5-2.2.6-7.el6_9.s390x.rpm | SHA-256: 0749f478f102ffc6e72397558be63eed5d358233c6cfaec704774f2186831c62 |
| freeradius-ldap-2.2.6-7.el6_9.s390x.rpm | SHA-256: 3636b84aa00ad6fc3df09ea02183f7155657f7a7141c3e1060cd82ddccfaa4bd |
| freeradius-mysql-2.2.6-7.el6_9.s390x.rpm | SHA-256: 180d921360eac5db7ae00cb53e7bdef2069d3e74d18c3a046f1aca7fb7466449 |
| freeradius-perl-2.2.6-7.el6_9.s390x.rpm | SHA-256: 45e835cb6774ce5b45e1dd7837cb425dcc19576aab699082cd078d61cdb5267f |
| freeradius-postgresql-2.2.6-7.el6_9.s390x.rpm | SHA-256: efafd74e4b93a4d3fb886518efc555582aa815fb1a39369e68c990858841b045 |
| freeradius-python-2.2.6-7.el6_9.s390x.rpm | SHA-256: 469764b212c6395a1201b3de42dd413f5328bd604765d43672dfcf74773fce4f |
| freeradius-unixODBC-2.2.6-7.el6_9.s390x.rpm | SHA-256: ac79ce9b6947b2f9a2ad770c0ef0a2675e2c07c489f88c3b844f437cbc16413f |
| freeradius-utils-2.2.6-7.el6_9.s390x.rpm | SHA-256: 12397b50bf13f8f06c5321e37f973ee89a24285d691153df6a147116ea70fc31 |
Red Hat Enterprise Linux for Power, big endian 6
| SRPM | |
|---|---|
| freeradius-2.2.6-7.el6_9.src.rpm | SHA-256: 209c0389b23e1339242e1ab6a5f7d1abc70fd3272d633a8346f64a0fcdc16a07 |
| ppc64 | |
| freeradius-2.2.6-7.el6_9.ppc64.rpm | SHA-256: 9631ecc088619efb9585d1016533704dc671b63ccb91bb31dbca4fe662d0d2d7 |
| freeradius-debuginfo-2.2.6-7.el6_9.ppc64.rpm | SHA-256: 19ee6652290890339a28715950f5fc021655af8c10c777929087188c9a1fbb75 |
| freeradius-debuginfo-2.2.6-7.el6_9.ppc64.rpm | SHA-256: 19ee6652290890339a28715950f5fc021655af8c10c777929087188c9a1fbb75 |
| freeradius-krb5-2.2.6-7.el6_9.ppc64.rpm | SHA-256: 764e68452c191509edae82a6991c53af499b4f14525a65f87b23867bef347ff4 |
| freeradius-ldap-2.2.6-7.el6_9.ppc64.rpm | SHA-256: 1ac72151a6c9225fa6d9baaea7c23e403b3b29f2eb19c7375cb423c0c2771fcd |
| freeradius-mysql-2.2.6-7.el6_9.ppc64.rpm | SHA-256: e23ec0c7c7b8315ad1f150e2e152435f1f9e6cec622dea583563e5615bce6b4e |
| freeradius-perl-2.2.6-7.el6_9.ppc64.rpm | SHA-256: 43d31aa3b2baade49e2338a81e3329e64ceb5c669f7ff38e90612a25e02e018c |
| freeradius-postgresql-2.2.6-7.el6_9.ppc64.rpm | SHA-256: c8132d2e89cbdf48582a68d54028f0afee9ec02d126431ae4780498687fe6d1e |
| freeradius-python-2.2.6-7.el6_9.ppc64.rpm | SHA-256: 781062c2b14443c223f76481334e4386a0178ca5d0655851fc92f49c698c928a |
| freeradius-unixODBC-2.2.6-7.el6_9.ppc64.rpm | SHA-256: fd10bd1ea36c494df664efa3e389bfc79da908bb1201015734d6e0634f42e942 |
| freeradius-utils-2.2.6-7.el6_9.ppc64.rpm | SHA-256: 68be1265067942daf842c481ba93c3a9e8469899734a1192f91f74ed69b11740 |
Red Hat Enterprise Linux for x86_64: 6
CPE2.3 External linkshttps://access.redhat.com/errata/RHSA-2017:1759
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the local network (LAN).
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
4) Memory leak
EUVDB-ID: #VU7555
Risk: Low
CVSSv4.0: 4.9 [CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]
CVE-ID: CVE-2017-10981
CWE-ID:
CWE-401 - Missing release of memory after effective lifetime
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker to perform a denial of service (DoS) attack.
The vulnerability exists due to memory leak in fr_dhcp_decode() function when processing DHCP packets. A remote attacker on local network can send specially crafted DHCP packets with malicious options to vulnerable system and trigger denial of service attack.
MitigationUpdate the affected package.
Red Hat Enterprise Linux Server 6
| SRPM | |
|---|---|
| freeradius-2.2.6-7.el6_9.src.rpm | SHA-256: 209c0389b23e1339242e1ab6a5f7d1abc70fd3272d633a8346f64a0fcdc16a07 |
| x86_64 | |
| freeradius-2.2.6-7.el6_9.x86_64.rpm | SHA-256: aeb2bb4d311f848294e93ce9a12ce867adef35524c1437e10ad9ade90e7fb3d5 |
| freeradius-debuginfo-2.2.6-7.el6_9.x86_64.rpm | SHA-256: 8e8ae24b582e4eebd029d342e1a11c11677df215e9a825a4aa24562d5f63bc7e |
| freeradius-debuginfo-2.2.6-7.el6_9.x86_64.rpm | SHA-256: 8e8ae24b582e4eebd029d342e1a11c11677df215e9a825a4aa24562d5f63bc7e |
| freeradius-krb5-2.2.6-7.el6_9.x86_64.rpm | SHA-256: 2fc74a6db71253d12dc4d4a7bb7b1bb984869386e4c16b929bf90d558dbd0f6e |
| freeradius-ldap-2.2.6-7.el6_9.x86_64.rpm | SHA-256: ae59caab0296fe602dde8000c59503c318fe7b92e430d707eaa1effafc0d230b |
| freeradius-mysql-2.2.6-7.el6_9.x86_64.rpm | SHA-256: f1bfe1e24b419c79d77daa553485bd8553baba414bc8d5b3626a5c0cab4d7bc6 |
| freeradius-perl-2.2.6-7.el6_9.x86_64.rpm | SHA-256: 35c0896bee6e439781364570fb7e631ab137272b3e87bf4cf22a48f37905364c |
| freeradius-postgresql-2.2.6-7.el6_9.x86_64.rpm | SHA-256: 7a2f723eaeb017a7276103602cdd062c7d86bb6308c1898461ccd694d564c632 |
| freeradius-python-2.2.6-7.el6_9.x86_64.rpm | SHA-256: 404d92d793638dc2045359d31727f0641f0e11e85e36900df82ab24238cb0c09 |
| freeradius-unixODBC-2.2.6-7.el6_9.x86_64.rpm | SHA-256: 7baac37777872919faef1c135a5f3f1c3ffef4c8db71135f46c9e41543eb8f1d |
| freeradius-utils-2.2.6-7.el6_9.x86_64.rpm | SHA-256: 4f8c66c8998bd6196e28ec0d28f20f4c1a8e4a2172ca496b26f670deaaec975f |
| i386 | |
| freeradius-2.2.6-7.el6_9.i686.rpm | SHA-256: 4f7067bbe960d8251abc16cb94fa696a7752e383bfffa2f0c7b51aeaf069e355 |
| freeradius-debuginfo-2.2.6-7.el6_9.i686.rpm | SHA-256: efbd907d104efbada0f4c7908aec14696d7fbc86c54b0535705a4c5ccdf49369 |
| freeradius-debuginfo-2.2.6-7.el6_9.i686.rpm | SHA-256: efbd907d104efbada0f4c7908aec14696d7fbc86c54b0535705a4c5ccdf49369 |
| freeradius-krb5-2.2.6-7.el6_9.i686.rpm | SHA-256: 7d04dc4b5e3691b4a4df388985d329903ed4ed841bd2cb5874c8ea3a51cdbbe9 |
| freeradius-ldap-2.2.6-7.el6_9.i686.rpm | SHA-256: 3a61799edb0b4f32e99832e613e947b19e9872425eb0a69e769c761f8343dee8 |
| freeradius-mysql-2.2.6-7.el6_9.i686.rpm | SHA-256: 4601caf86377b73c9389727e40a991594e46e83d646c65e91299cac412ef1419 |
| freeradius-perl-2.2.6-7.el6_9.i686.rpm | SHA-256: d0a4383e4bd71c1d81679084df74284143f262911079bfc038d22a3dc7a4a258 |
| freeradius-postgresql-2.2.6-7.el6_9.i686.rpm | SHA-256: 387d4e461cb5d20a802d3a7f72e21ebc31d967a0732799c035b0cced6fdf87f9 |
| freeradius-python-2.2.6-7.el6_9.i686.rpm | SHA-256: 62624739427fffe37b04c965dbef322b23856c985f0ee11b1f33b4c38f0a4fad |
| freeradius-unixODBC-2.2.6-7.el6_9.i686.rpm | SHA-256: 9e14faa1674c8f40b7772b1db2a02dedb0985043f0f810df4437624eb3120ed7 |
| freeradius-utils-2.2.6-7.el6_9.i686.rpm | SHA-256: 7119999481b3c0dce85293734f5422d9b7723a0d7b1cbfb91ac92a13d3be8525 |
Red Hat Enterprise Linux Workstation 6
| SRPM | |
|---|---|
| freeradius-2.2.6-7.el6_9.src.rpm | SHA-256: 209c0389b23e1339242e1ab6a5f7d1abc70fd3272d633a8346f64a0fcdc16a07 |
| x86_64 | |
| freeradius-2.2.6-7.el6_9.x86_64.rpm | SHA-256: aeb2bb4d311f848294e93ce9a12ce867adef35524c1437e10ad9ade90e7fb3d5 |
| freeradius-debuginfo-2.2.6-7.el6_9.x86_64.rpm | SHA-256: 8e8ae24b582e4eebd029d342e1a11c11677df215e9a825a4aa24562d5f63bc7e |
| freeradius-debuginfo-2.2.6-7.el6_9.x86_64.rpm | SHA-256: 8e8ae24b582e4eebd029d342e1a11c11677df215e9a825a4aa24562d5f63bc7e |
| freeradius-krb5-2.2.6-7.el6_9.x86_64.rpm | SHA-256: 2fc74a6db71253d12dc4d4a7bb7b1bb984869386e4c16b929bf90d558dbd0f6e |
| freeradius-ldap-2.2.6-7.el6_9.x86_64.rpm | SHA-256: ae59caab0296fe602dde8000c59503c318fe7b92e430d707eaa1effafc0d230b |
| freeradius-mysql-2.2.6-7.el6_9.x86_64.rpm | SHA-256: f1bfe1e24b419c79d77daa553485bd8553baba414bc8d5b3626a5c0cab4d7bc6 |
| freeradius-perl-2.2.6-7.el6_9.x86_64.rpm | SHA-256: 35c0896bee6e439781364570fb7e631ab137272b3e87bf4cf22a48f37905364c |
| freeradius-postgresql-2.2.6-7.el6_9.x86_64.rpm | SHA-256: 7a2f723eaeb017a7276103602cdd062c7d86bb6308c1898461ccd694d564c632 |
| freeradius-python-2.2.6-7.el6_9.x86_64.rpm | SHA-256: 404d92d793638dc2045359d31727f0641f0e11e85e36900df82ab24238cb0c09 |
| freeradius-unixODBC-2.2.6-7.el6_9.x86_64.rpm | SHA-256: 7baac37777872919faef1c135a5f3f1c3ffef4c8db71135f46c9e41543eb8f1d |
| freeradius-utils-2.2.6-7.el6_9.x86_64.rpm | SHA-256: 4f8c66c8998bd6196e28ec0d28f20f4c1a8e4a2172ca496b26f670deaaec975f |
| i386 | |
| freeradius-2.2.6-7.el6_9.i686.rpm | SHA-256: 4f7067bbe960d8251abc16cb94fa696a7752e383bfffa2f0c7b51aeaf069e355 |
| freeradius-debuginfo-2.2.6-7.el6_9.i686.rpm | SHA-256: efbd907d104efbada0f4c7908aec14696d7fbc86c54b0535705a4c5ccdf49369 |
| freeradius-debuginfo-2.2.6-7.el6_9.i686.rpm | SHA-256: efbd907d104efbada0f4c7908aec14696d7fbc86c54b0535705a4c5ccdf49369 |
| freeradius-krb5-2.2.6-7.el6_9.i686.rpm | SHA-256: 7d04dc4b5e3691b4a4df388985d329903ed4ed841bd2cb5874c8ea3a51cdbbe9 |
| freeradius-ldap-2.2.6-7.el6_9.i686.rpm | SHA-256: 3a61799edb0b4f32e99832e613e947b19e9872425eb0a69e769c761f8343dee8 |
| freeradius-mysql-2.2.6-7.el6_9.i686.rpm | SHA-256: 4601caf86377b73c9389727e40a991594e46e83d646c65e91299cac412ef1419 |
| freeradius-perl-2.2.6-7.el6_9.i686.rpm | SHA-256: d0a4383e4bd71c1d81679084df74284143f262911079bfc038d22a3dc7a4a258 |
| freeradius-postgresql-2.2.6-7.el6_9.i686.rpm | SHA-256: 387d4e461cb5d20a802d3a7f72e21ebc31d967a0732799c035b0cced6fdf87f9 |
| freeradius-python-2.2.6-7.el6_9.i686.rpm | SHA-256: 62624739427fffe37b04c965dbef322b23856c985f0ee11b1f33b4c38f0a4fad |
| freeradius-unixODBC-2.2.6-7.el6_9.i686.rpm | SHA-256: 9e14faa1674c8f40b7772b1db2a02dedb0985043f0f810df4437624eb3120ed7 |
| freeradius-utils-2.2.6-7.el6_9.i686.rpm | SHA-256: 7119999481b3c0dce85293734f5422d9b7723a0d7b1cbfb91ac92a13d3be8525 |
Red Hat Enterprise Linux for IBM z Systems 6
| SRPM | |
|---|---|
| freeradius-2.2.6-7.el6_9.src.rpm | SHA-256: 209c0389b23e1339242e1ab6a5f7d1abc70fd3272d633a8346f64a0fcdc16a07 |
| s390x | |
| freeradius-2.2.6-7.el6_9.s390x.rpm | SHA-256: 4ac2c30a693d38502c1f9530f46270808b34b40748c202a26085679a2d2889a8 |
| freeradius-debuginfo-2.2.6-7.el6_9.s390x.rpm | SHA-256: 2f0bf926aa4ca89f45f20df4df28ce2d2d737d0a4bda123e62445a46c422e119 |
| freeradius-debuginfo-2.2.6-7.el6_9.s390x.rpm | SHA-256: 2f0bf926aa4ca89f45f20df4df28ce2d2d737d0a4bda123e62445a46c422e119 |
| freeradius-krb5-2.2.6-7.el6_9.s390x.rpm | SHA-256: 0749f478f102ffc6e72397558be63eed5d358233c6cfaec704774f2186831c62 |
| freeradius-ldap-2.2.6-7.el6_9.s390x.rpm | SHA-256: 3636b84aa00ad6fc3df09ea02183f7155657f7a7141c3e1060cd82ddccfaa4bd |
| freeradius-mysql-2.2.6-7.el6_9.s390x.rpm | SHA-256: 180d921360eac5db7ae00cb53e7bdef2069d3e74d18c3a046f1aca7fb7466449 |
| freeradius-perl-2.2.6-7.el6_9.s390x.rpm | SHA-256: 45e835cb6774ce5b45e1dd7837cb425dcc19576aab699082cd078d61cdb5267f |
| freeradius-postgresql-2.2.6-7.el6_9.s390x.rpm | SHA-256: efafd74e4b93a4d3fb886518efc555582aa815fb1a39369e68c990858841b045 |
| freeradius-python-2.2.6-7.el6_9.s390x.rpm | SHA-256: 469764b212c6395a1201b3de42dd413f5328bd604765d43672dfcf74773fce4f |
| freeradius-unixODBC-2.2.6-7.el6_9.s390x.rpm | SHA-256: ac79ce9b6947b2f9a2ad770c0ef0a2675e2c07c489f88c3b844f437cbc16413f |
| freeradius-utils-2.2.6-7.el6_9.s390x.rpm | SHA-256: 12397b50bf13f8f06c5321e37f973ee89a24285d691153df6a147116ea70fc31 |
Red Hat Enterprise Linux for Power, big endian 6
| SRPM | |
|---|---|
| freeradius-2.2.6-7.el6_9.src.rpm | SHA-256: 209c0389b23e1339242e1ab6a5f7d1abc70fd3272d633a8346f64a0fcdc16a07 |
| ppc64 | |
| freeradius-2.2.6-7.el6_9.ppc64.rpm | SHA-256: 9631ecc088619efb9585d1016533704dc671b63ccb91bb31dbca4fe662d0d2d7 |
| freeradius-debuginfo-2.2.6-7.el6_9.ppc64.rpm | SHA-256: 19ee6652290890339a28715950f5fc021655af8c10c777929087188c9a1fbb75 |
| freeradius-debuginfo-2.2.6-7.el6_9.ppc64.rpm | SHA-256: 19ee6652290890339a28715950f5fc021655af8c10c777929087188c9a1fbb75 |
| freeradius-krb5-2.2.6-7.el6_9.ppc64.rpm | SHA-256: 764e68452c191509edae82a6991c53af499b4f14525a65f87b23867bef347ff4 |
| freeradius-ldap-2.2.6-7.el6_9.ppc64.rpm | SHA-256: 1ac72151a6c9225fa6d9baaea7c23e403b3b29f2eb19c7375cb423c0c2771fcd |
| freeradius-mysql-2.2.6-7.el6_9.ppc64.rpm | SHA-256: e23ec0c7c7b8315ad1f150e2e152435f1f9e6cec622dea583563e5615bce6b4e |
| freeradius-perl-2.2.6-7.el6_9.ppc64.rpm | SHA-256: 43d31aa3b2baade49e2338a81e3329e64ceb5c669f7ff38e90612a25e02e018c |
| freeradius-postgresql-2.2.6-7.el6_9.ppc64.rpm | SHA-256: c8132d2e89cbdf48582a68d54028f0afee9ec02d126431ae4780498687fe6d1e |
| freeradius-python-2.2.6-7.el6_9.ppc64.rpm | SHA-256: 781062c2b14443c223f76481334e4386a0178ca5d0655851fc92f49c698c928a |
| freeradius-unixODBC-2.2.6-7.el6_9.ppc64.rpm | SHA-256: fd10bd1ea36c494df664efa3e389bfc79da908bb1201015734d6e0634f42e942 |
| freeradius-utils-2.2.6-7.el6_9.ppc64.rpm | SHA-256: 68be1265067942daf842c481ba93c3a9e8469899734a1192f91f74ed69b11740 |
Red Hat Enterprise Linux for x86_64: 6
CPE2.3 External linkshttps://access.redhat.com/errata/RHSA-2017:1759
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the local network (LAN).
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
5) Out-of-bounds read
EUVDB-ID: #VU7556
Risk: Low
CVSSv4.0: 4.9 [CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]
CVE-ID: CVE-2017-10982
CWE-ID:
CWE-125 - Out-of-bounds read
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker to perform a denial of service (DoS) attack.
The vulnerability exists due to memory leak in fr_dhcp_decode_options() function when processing DHCP packets. A remote attacker on local network can send specially crafted DHCP packets with malicious options to vulnerable system and trigger denial of service attack.
MitigationUpdate the affected package.
Red Hat Enterprise Linux Server 6
| SRPM | |
|---|---|
| freeradius-2.2.6-7.el6_9.src.rpm | SHA-256: 209c0389b23e1339242e1ab6a5f7d1abc70fd3272d633a8346f64a0fcdc16a07 |
| x86_64 | |
| freeradius-2.2.6-7.el6_9.x86_64.rpm | SHA-256: aeb2bb4d311f848294e93ce9a12ce867adef35524c1437e10ad9ade90e7fb3d5 |
| freeradius-debuginfo-2.2.6-7.el6_9.x86_64.rpm | SHA-256: 8e8ae24b582e4eebd029d342e1a11c11677df215e9a825a4aa24562d5f63bc7e |
| freeradius-debuginfo-2.2.6-7.el6_9.x86_64.rpm | SHA-256: 8e8ae24b582e4eebd029d342e1a11c11677df215e9a825a4aa24562d5f63bc7e |
| freeradius-krb5-2.2.6-7.el6_9.x86_64.rpm | SHA-256: 2fc74a6db71253d12dc4d4a7bb7b1bb984869386e4c16b929bf90d558dbd0f6e |
| freeradius-ldap-2.2.6-7.el6_9.x86_64.rpm | SHA-256: ae59caab0296fe602dde8000c59503c318fe7b92e430d707eaa1effafc0d230b |
| freeradius-mysql-2.2.6-7.el6_9.x86_64.rpm | SHA-256: f1bfe1e24b419c79d77daa553485bd8553baba414bc8d5b3626a5c0cab4d7bc6 |
| freeradius-perl-2.2.6-7.el6_9.x86_64.rpm | SHA-256: 35c0896bee6e439781364570fb7e631ab137272b3e87bf4cf22a48f37905364c |
| freeradius-postgresql-2.2.6-7.el6_9.x86_64.rpm | SHA-256: 7a2f723eaeb017a7276103602cdd062c7d86bb6308c1898461ccd694d564c632 |
| freeradius-python-2.2.6-7.el6_9.x86_64.rpm | SHA-256: 404d92d793638dc2045359d31727f0641f0e11e85e36900df82ab24238cb0c09 |
| freeradius-unixODBC-2.2.6-7.el6_9.x86_64.rpm | SHA-256: 7baac37777872919faef1c135a5f3f1c3ffef4c8db71135f46c9e41543eb8f1d |
| freeradius-utils-2.2.6-7.el6_9.x86_64.rpm | SHA-256: 4f8c66c8998bd6196e28ec0d28f20f4c1a8e4a2172ca496b26f670deaaec975f |
| i386 | |
| freeradius-2.2.6-7.el6_9.i686.rpm | SHA-256: 4f7067bbe960d8251abc16cb94fa696a7752e383bfffa2f0c7b51aeaf069e355 |
| freeradius-debuginfo-2.2.6-7.el6_9.i686.rpm | SHA-256: efbd907d104efbada0f4c7908aec14696d7fbc86c54b0535705a4c5ccdf49369 |
| freeradius-debuginfo-2.2.6-7.el6_9.i686.rpm | SHA-256: efbd907d104efbada0f4c7908aec14696d7fbc86c54b0535705a4c5ccdf49369 |
| freeradius-krb5-2.2.6-7.el6_9.i686.rpm | SHA-256: 7d04dc4b5e3691b4a4df388985d329903ed4ed841bd2cb5874c8ea3a51cdbbe9 |
| freeradius-ldap-2.2.6-7.el6_9.i686.rpm | SHA-256: 3a61799edb0b4f32e99832e613e947b19e9872425eb0a69e769c761f8343dee8 |
| freeradius-mysql-2.2.6-7.el6_9.i686.rpm | SHA-256: 4601caf86377b73c9389727e40a991594e46e83d646c65e91299cac412ef1419 |
| freeradius-perl-2.2.6-7.el6_9.i686.rpm | SHA-256: d0a4383e4bd71c1d81679084df74284143f262911079bfc038d22a3dc7a4a258 |
| freeradius-postgresql-2.2.6-7.el6_9.i686.rpm | SHA-256: 387d4e461cb5d20a802d3a7f72e21ebc31d967a0732799c035b0cced6fdf87f9 |
| freeradius-python-2.2.6-7.el6_9.i686.rpm | SHA-256: 62624739427fffe37b04c965dbef322b23856c985f0ee11b1f33b4c38f0a4fad |
| freeradius-unixODBC-2.2.6-7.el6_9.i686.rpm | SHA-256: 9e14faa1674c8f40b7772b1db2a02dedb0985043f0f810df4437624eb3120ed7 |
| freeradius-utils-2.2.6-7.el6_9.i686.rpm | SHA-256: 7119999481b3c0dce85293734f5422d9b7723a0d7b1cbfb91ac92a13d3be8525 |
Red Hat Enterprise Linux Workstation 6
| SRPM | |
|---|---|
| freeradius-2.2.6-7.el6_9.src.rpm | SHA-256: 209c0389b23e1339242e1ab6a5f7d1abc70fd3272d633a8346f64a0fcdc16a07 |
| x86_64 | |
| freeradius-2.2.6-7.el6_9.x86_64.rpm | SHA-256: aeb2bb4d311f848294e93ce9a12ce867adef35524c1437e10ad9ade90e7fb3d5 |
| freeradius-debuginfo-2.2.6-7.el6_9.x86_64.rpm | SHA-256: 8e8ae24b582e4eebd029d342e1a11c11677df215e9a825a4aa24562d5f63bc7e |
| freeradius-debuginfo-2.2.6-7.el6_9.x86_64.rpm | SHA-256: 8e8ae24b582e4eebd029d342e1a11c11677df215e9a825a4aa24562d5f63bc7e |
| freeradius-krb5-2.2.6-7.el6_9.x86_64.rpm | SHA-256: 2fc74a6db71253d12dc4d4a7bb7b1bb984869386e4c16b929bf90d558dbd0f6e |
| freeradius-ldap-2.2.6-7.el6_9.x86_64.rpm | SHA-256: ae59caab0296fe602dde8000c59503c318fe7b92e430d707eaa1effafc0d230b |
| freeradius-mysql-2.2.6-7.el6_9.x86_64.rpm | SHA-256: f1bfe1e24b419c79d77daa553485bd8553baba414bc8d5b3626a5c0cab4d7bc6 |
| freeradius-perl-2.2.6-7.el6_9.x86_64.rpm | SHA-256: 35c0896bee6e439781364570fb7e631ab137272b3e87bf4cf22a48f37905364c |
| freeradius-postgresql-2.2.6-7.el6_9.x86_64.rpm | SHA-256: 7a2f723eaeb017a7276103602cdd062c7d86bb6308c1898461ccd694d564c632 |
| freeradius-python-2.2.6-7.el6_9.x86_64.rpm | SHA-256: 404d92d793638dc2045359d31727f0641f0e11e85e36900df82ab24238cb0c09 |
| freeradius-unixODBC-2.2.6-7.el6_9.x86_64.rpm | SHA-256: 7baac37777872919faef1c135a5f3f1c3ffef4c8db71135f46c9e41543eb8f1d |
| freeradius-utils-2.2.6-7.el6_9.x86_64.rpm | SHA-256: 4f8c66c8998bd6196e28ec0d28f20f4c1a8e4a2172ca496b26f670deaaec975f |
| i386 | |
| freeradius-2.2.6-7.el6_9.i686.rpm | SHA-256: 4f7067bbe960d8251abc16cb94fa696a7752e383bfffa2f0c7b51aeaf069e355 |
| freeradius-debuginfo-2.2.6-7.el6_9.i686.rpm | SHA-256: efbd907d104efbada0f4c7908aec14696d7fbc86c54b0535705a4c5ccdf49369 |
| freeradius-debuginfo-2.2.6-7.el6_9.i686.rpm | SHA-256: efbd907d104efbada0f4c7908aec14696d7fbc86c54b0535705a4c5ccdf49369 |
| freeradius-krb5-2.2.6-7.el6_9.i686.rpm | SHA-256: 7d04dc4b5e3691b4a4df388985d329903ed4ed841bd2cb5874c8ea3a51cdbbe9 |
| freeradius-ldap-2.2.6-7.el6_9.i686.rpm | SHA-256: 3a61799edb0b4f32e99832e613e947b19e9872425eb0a69e769c761f8343dee8 |
| freeradius-mysql-2.2.6-7.el6_9.i686.rpm | SHA-256: 4601caf86377b73c9389727e40a991594e46e83d646c65e91299cac412ef1419 |
| freeradius-perl-2.2.6-7.el6_9.i686.rpm | SHA-256: d0a4383e4bd71c1d81679084df74284143f262911079bfc038d22a3dc7a4a258 |
| freeradius-postgresql-2.2.6-7.el6_9.i686.rpm | SHA-256: 387d4e461cb5d20a802d3a7f72e21ebc31d967a0732799c035b0cced6fdf87f9 |
| freeradius-python-2.2.6-7.el6_9.i686.rpm | SHA-256: 62624739427fffe37b04c965dbef322b23856c985f0ee11b1f33b4c38f0a4fad |
| freeradius-unixODBC-2.2.6-7.el6_9.i686.rpm | SHA-256: 9e14faa1674c8f40b7772b1db2a02dedb0985043f0f810df4437624eb3120ed7 |
| freeradius-utils-2.2.6-7.el6_9.i686.rpm | SHA-256: 7119999481b3c0dce85293734f5422d9b7723a0d7b1cbfb91ac92a13d3be8525 |
Red Hat Enterprise Linux for IBM z Systems 6
| SRPM | |
|---|---|
| freeradius-2.2.6-7.el6_9.src.rpm | SHA-256: 209c0389b23e1339242e1ab6a5f7d1abc70fd3272d633a8346f64a0fcdc16a07 |
| s390x | |
| freeradius-2.2.6-7.el6_9.s390x.rpm | SHA-256: 4ac2c30a693d38502c1f9530f46270808b34b40748c202a26085679a2d2889a8 |
| freeradius-debuginfo-2.2.6-7.el6_9.s390x.rpm | SHA-256: 2f0bf926aa4ca89f45f20df4df28ce2d2d737d0a4bda123e62445a46c422e119 |
| freeradius-debuginfo-2.2.6-7.el6_9.s390x.rpm | SHA-256: 2f0bf926aa4ca89f45f20df4df28ce2d2d737d0a4bda123e62445a46c422e119 |
| freeradius-krb5-2.2.6-7.el6_9.s390x.rpm | SHA-256: 0749f478f102ffc6e72397558be63eed5d358233c6cfaec704774f2186831c62 |
| freeradius-ldap-2.2.6-7.el6_9.s390x.rpm | SHA-256: 3636b84aa00ad6fc3df09ea02183f7155657f7a7141c3e1060cd82ddccfaa4bd |
| freeradius-mysql-2.2.6-7.el6_9.s390x.rpm | SHA-256: 180d921360eac5db7ae00cb53e7bdef2069d3e74d18c3a046f1aca7fb7466449 |
| freeradius-perl-2.2.6-7.el6_9.s390x.rpm | SHA-256: 45e835cb6774ce5b45e1dd7837cb425dcc19576aab699082cd078d61cdb5267f |
| freeradius-postgresql-2.2.6-7.el6_9.s390x.rpm | SHA-256: efafd74e4b93a4d3fb886518efc555582aa815fb1a39369e68c990858841b045 |
| freeradius-python-2.2.6-7.el6_9.s390x.rpm | SHA-256: 469764b212c6395a1201b3de42dd413f5328bd604765d43672dfcf74773fce4f |
| freeradius-unixODBC-2.2.6-7.el6_9.s390x.rpm | SHA-256: ac79ce9b6947b2f9a2ad770c0ef0a2675e2c07c489f88c3b844f437cbc16413f |
| freeradius-utils-2.2.6-7.el6_9.s390x.rpm | SHA-256: 12397b50bf13f8f06c5321e37f973ee89a24285d691153df6a147116ea70fc31 |
Red Hat Enterprise Linux for Power, big endian 6
| SRPM | |
|---|---|
| freeradius-2.2.6-7.el6_9.src.rpm | SHA-256: 209c0389b23e1339242e1ab6a5f7d1abc70fd3272d633a8346f64a0fcdc16a07 |
| ppc64 | |
| freeradius-2.2.6-7.el6_9.ppc64.rpm | SHA-256: 9631ecc088619efb9585d1016533704dc671b63ccb91bb31dbca4fe662d0d2d7 |
| freeradius-debuginfo-2.2.6-7.el6_9.ppc64.rpm | SHA-256: 19ee6652290890339a28715950f5fc021655af8c10c777929087188c9a1fbb75 |
| freeradius-debuginfo-2.2.6-7.el6_9.ppc64.rpm | SHA-256: 19ee6652290890339a28715950f5fc021655af8c10c777929087188c9a1fbb75 |
| freeradius-krb5-2.2.6-7.el6_9.ppc64.rpm | SHA-256: 764e68452c191509edae82a6991c53af499b4f14525a65f87b23867bef347ff4 |
| freeradius-ldap-2.2.6-7.el6_9.ppc64.rpm | SHA-256: 1ac72151a6c9225fa6d9baaea7c23e403b3b29f2eb19c7375cb423c0c2771fcd |
| freeradius-mysql-2.2.6-7.el6_9.ppc64.rpm | SHA-256: e23ec0c7c7b8315ad1f150e2e152435f1f9e6cec622dea583563e5615bce6b4e |
| freeradius-perl-2.2.6-7.el6_9.ppc64.rpm | SHA-256: 43d31aa3b2baade49e2338a81e3329e64ceb5c669f7ff38e90612a25e02e018c |
| freeradius-postgresql-2.2.6-7.el6_9.ppc64.rpm | SHA-256: c8132d2e89cbdf48582a68d54028f0afee9ec02d126431ae4780498687fe6d1e |
| freeradius-python-2.2.6-7.el6_9.ppc64.rpm | SHA-256: 781062c2b14443c223f76481334e4386a0178ca5d0655851fc92f49c698c928a |
| freeradius-unixODBC-2.2.6-7.el6_9.ppc64.rpm | SHA-256: fd10bd1ea36c494df664efa3e389bfc79da908bb1201015734d6e0634f42e942 |
| freeradius-utils-2.2.6-7.el6_9.ppc64.rpm | SHA-256: 68be1265067942daf842c481ba93c3a9e8469899734a1192f91f74ed69b11740 |
Red Hat Enterprise Linux for x86_64: 6
CPE2.3 External linkshttps://access.redhat.com/errata/RHSA-2017:1759
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the local network (LAN).
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
6) Out-of-bounds read
EUVDB-ID: #VU7557
Risk: Low
CVSSv4.0: 4.9 [CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]
CVE-ID: CVE-2017-10983
CWE-ID:
CWE-125 - Out-of-bounds read
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker to perform a denial of service (DoS) attack.
The vulnerability exists due to memory leak in fr_dhcp_decode() function when processing DHCP packets. A remote attacker on local network can send specially crafted DHCP option 63 with non-zero contents to vulnerable system and trigger denial of service attack.
MitigationUpdate the affected package.
Red Hat Enterprise Linux Server 6
| SRPM | |
|---|---|
| freeradius-2.2.6-7.el6_9.src.rpm | SHA-256: 209c0389b23e1339242e1ab6a5f7d1abc70fd3272d633a8346f64a0fcdc16a07 |
| x86_64 | |
| freeradius-2.2.6-7.el6_9.x86_64.rpm | SHA-256: aeb2bb4d311f848294e93ce9a12ce867adef35524c1437e10ad9ade90e7fb3d5 |
| freeradius-debuginfo-2.2.6-7.el6_9.x86_64.rpm | SHA-256: 8e8ae24b582e4eebd029d342e1a11c11677df215e9a825a4aa24562d5f63bc7e |
| freeradius-debuginfo-2.2.6-7.el6_9.x86_64.rpm | SHA-256: 8e8ae24b582e4eebd029d342e1a11c11677df215e9a825a4aa24562d5f63bc7e |
| freeradius-krb5-2.2.6-7.el6_9.x86_64.rpm | SHA-256: 2fc74a6db71253d12dc4d4a7bb7b1bb984869386e4c16b929bf90d558dbd0f6e |
| freeradius-ldap-2.2.6-7.el6_9.x86_64.rpm | SHA-256: ae59caab0296fe602dde8000c59503c318fe7b92e430d707eaa1effafc0d230b |
| freeradius-mysql-2.2.6-7.el6_9.x86_64.rpm | SHA-256: f1bfe1e24b419c79d77daa553485bd8553baba414bc8d5b3626a5c0cab4d7bc6 |
| freeradius-perl-2.2.6-7.el6_9.x86_64.rpm | SHA-256: 35c0896bee6e439781364570fb7e631ab137272b3e87bf4cf22a48f37905364c |
| freeradius-postgresql-2.2.6-7.el6_9.x86_64.rpm | SHA-256: 7a2f723eaeb017a7276103602cdd062c7d86bb6308c1898461ccd694d564c632 |
| freeradius-python-2.2.6-7.el6_9.x86_64.rpm | SHA-256: 404d92d793638dc2045359d31727f0641f0e11e85e36900df82ab24238cb0c09 |
| freeradius-unixODBC-2.2.6-7.el6_9.x86_64.rpm | SHA-256: 7baac37777872919faef1c135a5f3f1c3ffef4c8db71135f46c9e41543eb8f1d |
| freeradius-utils-2.2.6-7.el6_9.x86_64.rpm | SHA-256: 4f8c66c8998bd6196e28ec0d28f20f4c1a8e4a2172ca496b26f670deaaec975f |
| i386 | |
| freeradius-2.2.6-7.el6_9.i686.rpm | SHA-256: 4f7067bbe960d8251abc16cb94fa696a7752e383bfffa2f0c7b51aeaf069e355 |
| freeradius-debuginfo-2.2.6-7.el6_9.i686.rpm | SHA-256: efbd907d104efbada0f4c7908aec14696d7fbc86c54b0535705a4c5ccdf49369 |
| freeradius-debuginfo-2.2.6-7.el6_9.i686.rpm | SHA-256: efbd907d104efbada0f4c7908aec14696d7fbc86c54b0535705a4c5ccdf49369 |
| freeradius-krb5-2.2.6-7.el6_9.i686.rpm | SHA-256: 7d04dc4b5e3691b4a4df388985d329903ed4ed841bd2cb5874c8ea3a51cdbbe9 |
| freeradius-ldap-2.2.6-7.el6_9.i686.rpm | SHA-256: 3a61799edb0b4f32e99832e613e947b19e9872425eb0a69e769c761f8343dee8 |
| freeradius-mysql-2.2.6-7.el6_9.i686.rpm | SHA-256: 4601caf86377b73c9389727e40a991594e46e83d646c65e91299cac412ef1419 |
| freeradius-perl-2.2.6-7.el6_9.i686.rpm | SHA-256: d0a4383e4bd71c1d81679084df74284143f262911079bfc038d22a3dc7a4a258 |
| freeradius-postgresql-2.2.6-7.el6_9.i686.rpm | SHA-256: 387d4e461cb5d20a802d3a7f72e21ebc31d967a0732799c035b0cced6fdf87f9 |
| freeradius-python-2.2.6-7.el6_9.i686.rpm | SHA-256: 62624739427fffe37b04c965dbef322b23856c985f0ee11b1f33b4c38f0a4fad |
| freeradius-unixODBC-2.2.6-7.el6_9.i686.rpm | SHA-256: 9e14faa1674c8f40b7772b1db2a02dedb0985043f0f810df4437624eb3120ed7 |
| freeradius-utils-2.2.6-7.el6_9.i686.rpm | SHA-256: 7119999481b3c0dce85293734f5422d9b7723a0d7b1cbfb91ac92a13d3be8525 |
Red Hat Enterprise Linux Workstation 6
| SRPM | |
|---|---|
| freeradius-2.2.6-7.el6_9.src.rpm | SHA-256: 209c0389b23e1339242e1ab6a5f7d1abc70fd3272d633a8346f64a0fcdc16a07 |
| x86_64 | |
| freeradius-2.2.6-7.el6_9.x86_64.rpm | SHA-256: aeb2bb4d311f848294e93ce9a12ce867adef35524c1437e10ad9ade90e7fb3d5 |
| freeradius-debuginfo-2.2.6-7.el6_9.x86_64.rpm | SHA-256: 8e8ae24b582e4eebd029d342e1a11c11677df215e9a825a4aa24562d5f63bc7e |
| freeradius-debuginfo-2.2.6-7.el6_9.x86_64.rpm | SHA-256: 8e8ae24b582e4eebd029d342e1a11c11677df215e9a825a4aa24562d5f63bc7e |
| freeradius-krb5-2.2.6-7.el6_9.x86_64.rpm | SHA-256: 2fc74a6db71253d12dc4d4a7bb7b1bb984869386e4c16b929bf90d558dbd0f6e |
| freeradius-ldap-2.2.6-7.el6_9.x86_64.rpm | SHA-256: ae59caab0296fe602dde8000c59503c318fe7b92e430d707eaa1effafc0d230b |
| freeradius-mysql-2.2.6-7.el6_9.x86_64.rpm | SHA-256: f1bfe1e24b419c79d77daa553485bd8553baba414bc8d5b3626a5c0cab4d7bc6 |
| freeradius-perl-2.2.6-7.el6_9.x86_64.rpm | SHA-256: 35c0896bee6e439781364570fb7e631ab137272b3e87bf4cf22a48f37905364c |
| freeradius-postgresql-2.2.6-7.el6_9.x86_64.rpm | SHA-256: 7a2f723eaeb017a7276103602cdd062c7d86bb6308c1898461ccd694d564c632 |
| freeradius-python-2.2.6-7.el6_9.x86_64.rpm | SHA-256: 404d92d793638dc2045359d31727f0641f0e11e85e36900df82ab24238cb0c09 |
| freeradius-unixODBC-2.2.6-7.el6_9.x86_64.rpm | SHA-256: 7baac37777872919faef1c135a5f3f1c3ffef4c8db71135f46c9e41543eb8f1d |
| freeradius-utils-2.2.6-7.el6_9.x86_64.rpm | SHA-256: 4f8c66c8998bd6196e28ec0d28f20f4c1a8e4a2172ca496b26f670deaaec975f |
| i386 | |
| freeradius-2.2.6-7.el6_9.i686.rpm | SHA-256: 4f7067bbe960d8251abc16cb94fa696a7752e383bfffa2f0c7b51aeaf069e355 |
| freeradius-debuginfo-2.2.6-7.el6_9.i686.rpm | SHA-256: efbd907d104efbada0f4c7908aec14696d7fbc86c54b0535705a4c5ccdf49369 |
| freeradius-debuginfo-2.2.6-7.el6_9.i686.rpm | SHA-256: efbd907d104efbada0f4c7908aec14696d7fbc86c54b0535705a4c5ccdf49369 |
| freeradius-krb5-2.2.6-7.el6_9.i686.rpm | SHA-256: 7d04dc4b5e3691b4a4df388985d329903ed4ed841bd2cb5874c8ea3a51cdbbe9 |
| freeradius-ldap-2.2.6-7.el6_9.i686.rpm | SHA-256: 3a61799edb0b4f32e99832e613e947b19e9872425eb0a69e769c761f8343dee8 |
| freeradius-mysql-2.2.6-7.el6_9.i686.rpm | SHA-256: 4601caf86377b73c9389727e40a991594e46e83d646c65e91299cac412ef1419 |
| freeradius-perl-2.2.6-7.el6_9.i686.rpm | SHA-256: d0a4383e4bd71c1d81679084df74284143f262911079bfc038d22a3dc7a4a258 |
| freeradius-postgresql-2.2.6-7.el6_9.i686.rpm | SHA-256: 387d4e461cb5d20a802d3a7f72e21ebc31d967a0732799c035b0cced6fdf87f9 |
| freeradius-python-2.2.6-7.el6_9.i686.rpm | SHA-256: 62624739427fffe37b04c965dbef322b23856c985f0ee11b1f33b4c38f0a4fad |
| freeradius-unixODBC-2.2.6-7.el6_9.i686.rpm | SHA-256: 9e14faa1674c8f40b7772b1db2a02dedb0985043f0f810df4437624eb3120ed7 |
| freeradius-utils-2.2.6-7.el6_9.i686.rpm | SHA-256: 7119999481b3c0dce85293734f5422d9b7723a0d7b1cbfb91ac92a13d3be8525 |
Red Hat Enterprise Linux for IBM z Systems 6
| SRPM | |
|---|---|
| freeradius-2.2.6-7.el6_9.src.rpm | SHA-256: 209c0389b23e1339242e1ab6a5f7d1abc70fd3272d633a8346f64a0fcdc16a07 |
| s390x | |
| freeradius-2.2.6-7.el6_9.s390x.rpm | SHA-256: 4ac2c30a693d38502c1f9530f46270808b34b40748c202a26085679a2d2889a8 |
| freeradius-debuginfo-2.2.6-7.el6_9.s390x.rpm | SHA-256: 2f0bf926aa4ca89f45f20df4df28ce2d2d737d0a4bda123e62445a46c422e119 |
| freeradius-debuginfo-2.2.6-7.el6_9.s390x.rpm | SHA-256: 2f0bf926aa4ca89f45f20df4df28ce2d2d737d0a4bda123e62445a46c422e119 |
| freeradius-krb5-2.2.6-7.el6_9.s390x.rpm | SHA-256: 0749f478f102ffc6e72397558be63eed5d358233c6cfaec704774f2186831c62 |
| freeradius-ldap-2.2.6-7.el6_9.s390x.rpm | SHA-256: 3636b84aa00ad6fc3df09ea02183f7155657f7a7141c3e1060cd82ddccfaa4bd |
| freeradius-mysql-2.2.6-7.el6_9.s390x.rpm | SHA-256: 180d921360eac5db7ae00cb53e7bdef2069d3e74d18c3a046f1aca7fb7466449 |
| freeradius-perl-2.2.6-7.el6_9.s390x.rpm | SHA-256: 45e835cb6774ce5b45e1dd7837cb425dcc19576aab699082cd078d61cdb5267f |
| freeradius-postgresql-2.2.6-7.el6_9.s390x.rpm | SHA-256: efafd74e4b93a4d3fb886518efc555582aa815fb1a39369e68c990858841b045 |
| freeradius-python-2.2.6-7.el6_9.s390x.rpm | SHA-256: 469764b212c6395a1201b3de42dd413f5328bd604765d43672dfcf74773fce4f |
| freeradius-unixODBC-2.2.6-7.el6_9.s390x.rpm | SHA-256: ac79ce9b6947b2f9a2ad770c0ef0a2675e2c07c489f88c3b844f437cbc16413f |
| freeradius-utils-2.2.6-7.el6_9.s390x.rpm | SHA-256: 12397b50bf13f8f06c5321e37f973ee89a24285d691153df6a147116ea70fc31 |
Red Hat Enterprise Linux for Power, big endian 6
| SRPM | |
|---|---|
| freeradius-2.2.6-7.el6_9.src.rpm | SHA-256: 209c0389b23e1339242e1ab6a5f7d1abc70fd3272d633a8346f64a0fcdc16a07 |
| ppc64 | |
| freeradius-2.2.6-7.el6_9.ppc64.rpm | SHA-256: 9631ecc088619efb9585d1016533704dc671b63ccb91bb31dbca4fe662d0d2d7 |
| freeradius-debuginfo-2.2.6-7.el6_9.ppc64.rpm | SHA-256: 19ee6652290890339a28715950f5fc021655af8c10c777929087188c9a1fbb75 |
| freeradius-debuginfo-2.2.6-7.el6_9.ppc64.rpm | SHA-256: 19ee6652290890339a28715950f5fc021655af8c10c777929087188c9a1fbb75 |
| freeradius-krb5-2.2.6-7.el6_9.ppc64.rpm | SHA-256: 764e68452c191509edae82a6991c53af499b4f14525a65f87b23867bef347ff4 |
| freeradius-ldap-2.2.6-7.el6_9.ppc64.rpm | SHA-256: 1ac72151a6c9225fa6d9baaea7c23e403b3b29f2eb19c7375cb423c0c2771fcd |
| freeradius-mysql-2.2.6-7.el6_9.ppc64.rpm | SHA-256: e23ec0c7c7b8315ad1f150e2e152435f1f9e6cec622dea583563e5615bce6b4e |
| freeradius-perl-2.2.6-7.el6_9.ppc64.rpm | SHA-256: 43d31aa3b2baade49e2338a81e3329e64ceb5c669f7ff38e90612a25e02e018c |
| freeradius-postgresql-2.2.6-7.el6_9.ppc64.rpm | SHA-256: c8132d2e89cbdf48582a68d54028f0afee9ec02d126431ae4780498687fe6d1e |
| freeradius-python-2.2.6-7.el6_9.ppc64.rpm | SHA-256: 781062c2b14443c223f76481334e4386a0178ca5d0655851fc92f49c698c928a |
| freeradius-unixODBC-2.2.6-7.el6_9.ppc64.rpm | SHA-256: fd10bd1ea36c494df664efa3e389bfc79da908bb1201015734d6e0634f42e942 |
| freeradius-utils-2.2.6-7.el6_9.ppc64.rpm | SHA-256: 68be1265067942daf842c481ba93c3a9e8469899734a1192f91f74ed69b11740 |
Red Hat Enterprise Linux for x86_64: 6
CPE2.3 External linkshttps://access.redhat.com/errata/RHSA-2017:1759
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the local network (LAN).
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
