SUSE update for freeradius-server



Published: 2024-07-10 | Updated: 2024-07-12
Risk Medium
Patch available YES
Number of vulnerabilities 1
CVE-ID CVE-2024-3596
CWE-ID CWE-327
Exploitation vector Network
Public exploit Public exploit code for vulnerability #1 is available.
Vulnerable software
Subscribe 		Server Applications Module
Operating systems & Components / Operating system

SUSE Linux Enterprise Real Time 15
Operating systems & Components / Operating system

openSUSE Leap
Operating systems & Components / Operating system

SUSE Linux Enterprise Server for SAP Applications 15
Operating systems & Components / Operating system

SUSE Linux Enterprise Server 15
Operating systems & Components / Operating system

freeradius-server-python3
Operating systems & Components / Operating system package or component

freeradius-server
Operating systems & Components / Operating system package or component

freeradius-server-python3-debuginfo
Operating systems & Components / Operating system package or component

freeradius-server-mysql
Operating systems & Components / Operating system package or component

freeradius-server-krb5-debuginfo
Operating systems & Components / Operating system package or component

freeradius-server-ldap-debuginfo
Operating systems & Components / Operating system package or component

freeradius-server-libs-debuginfo
Operating systems & Components / Operating system package or component

freeradius-server-ldap
Operating systems & Components / Operating system package or component

freeradius-server-krb5
Operating systems & Components / Operating system package or component

freeradius-server-perl
Operating systems & Components / Operating system package or component

freeradius-server-ldap-schemas
Operating systems & Components / Operating system package or component

freeradius-server-sqlite-debuginfo
Operating systems & Components / Operating system package or component

freeradius-server-doc
Operating systems & Components / Operating system package or component

freeradius-server-perl-debuginfo
Operating systems & Components / Operating system package or component

freeradius-server-mysql-debuginfo
Operating systems & Components / Operating system package or component

freeradius-server-utils
Operating systems & Components / Operating system package or component

freeradius-server-utils-debuginfo
Operating systems & Components / Operating system package or component

freeradius-server-postgresql
Operating systems & Components / Operating system package or component

freeradius-server-postgresql-debuginfo
Operating systems & Components / Operating system package or component

freeradius-server-debugsource
Operating systems & Components / Operating system package or component

freeradius-server-devel
Operating systems & Components / Operating system package or component

freeradius-server-sqlite
Operating systems & Components / Operating system package or component

freeradius-server-debuginfo
Operating systems & Components / Operating system package or component

freeradius-server-libs
Operating systems & Components / Operating system package or component

Vendor SUSE

Security Bulletin

This security bulletin contains one medium risk vulnerability.

1) Use of a broken or risky cryptographic algorithm

EUVDB-ID: #VU94063

Risk: Medium

CVSSv3.1: 6.7 [CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C]

CVE-ID: CVE-2024-3596

CWE-ID: CWE-327 - Use of a Broken or Risky Cryptographic Algorithm

Exploit availability: Yes

Description

The vulnerability allows a remote attacker to compromise the target system.

The vulnerability exists due to use of a broken or risky cryptographic algorithm in RADIUS Protocol. A remote user can perform a man-in-the-middle (MitM) attack and gain access to target system.

Mitigation

Update the affected package freeradius-server to the latest version.

Vulnerable software versions

Server Applications Module: 15-SP6

SUSE Linux Enterprise Real Time 15: SP6

openSUSE Leap: 15.6

SUSE Linux Enterprise Server for SAP Applications 15: SP6

SUSE Linux Enterprise Server 15: SP6

freeradius-server-python3: before 3.2.4-150600.3.3.2

freeradius-server: before 3.2.4-150600.3.3.2

freeradius-server-python3-debuginfo: before 3.2.4-150600.3.3.2

freeradius-server-mysql: before 3.2.4-150600.3.3.2

freeradius-server-krb5-debuginfo: before 3.2.4-150600.3.3.2

freeradius-server-ldap-debuginfo: before 3.2.4-150600.3.3.2

freeradius-server-libs-debuginfo: before 3.2.4-150600.3.3.2

freeradius-server-ldap: before 3.2.4-150600.3.3.2

freeradius-server-krb5: before 3.2.4-150600.3.3.2

freeradius-server-perl: before 3.2.4-150600.3.3.2

freeradius-server-ldap-schemas: before 3.2.4-150600.3.3.2

freeradius-server-sqlite-debuginfo: before 3.2.4-150600.3.3.2

freeradius-server-doc: before 3.2.4-150600.3.3.2

freeradius-server-perl-debuginfo: before 3.2.4-150600.3.3.2

freeradius-server-mysql-debuginfo: before 3.2.4-150600.3.3.2

freeradius-server-utils: before 3.2.4-150600.3.3.2

freeradius-server-utils-debuginfo: before 3.2.4-150600.3.3.2

freeradius-server-postgresql: before 3.2.4-150600.3.3.2

freeradius-server-postgresql-debuginfo: before 3.2.4-150600.3.3.2

freeradius-server-debugsource: before 3.2.4-150600.3.3.2

freeradius-server-devel: before 3.2.4-150600.3.3.2

freeradius-server-sqlite: before 3.2.4-150600.3.3.2

freeradius-server-debuginfo: before 3.2.4-150600.3.3.2

freeradius-server-libs: before 3.2.4-150600.3.3.2

CPE2.3 External links

http://www.suse.com/support/update/announcement/2024/suse-su-20242359-1/


Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote authenticated user via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability. However, proof of concept for this vulnerability is available.



###SIDEBAR###