Bug 1468549 (CVE-2017-10984)
Summary: | CVE-2017-10984 freeradius: Out-of-bounds write in data2vp_wimax() | ||||||||
---|---|---|---|---|---|---|---|---|---|
Product: | [Other] Security Response | Reporter: | Adam Mariš <amaris> | ||||||
Component: | vulnerability | Assignee: | Red Hat Product Security <security-response-team> | ||||||
Status: | CLOSED ERRATA | QA Contact: | |||||||
Severity: | high | Docs Contact: | |||||||
Priority: | high | ||||||||
Version: | unspecified | CC: | dpal, jdennis, lemenkov, nikolai.kondrashov, pkis, security-response-team | ||||||
Target Milestone: | --- | Keywords: | Security | ||||||
Target Release: | --- | ||||||||
Hardware: | All | ||||||||
OS: | Linux | ||||||||
Whiteboard: | |||||||||
Fixed In Version: | freeradius 3.0.15 | Doc Type: | If docs needed, set a value | ||||||
Doc Text: |
An out-of-bounds write flaw was found in the way FreeRADIUS server handled certain attributes in request packets. A remote attacker could use this flaw to crash the FreeRADIUS server or to execute arbitrary code in the context of the FreeRADIUS server process by sending a specially crafted request packet.
|
Story Points: | --- | ||||||
Clone Of: | Environment: | ||||||||
Last Closed: | 2017-08-02 09:40:46 UTC | Type: | --- | ||||||
Regression: | --- | Mount Type: | --- | ||||||
Documentation: | --- | CRM: | |||||||
Verified Versions: | Category: | --- | |||||||
oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |||||||
Cloudforms Team: | --- | Target Upstream Version: | |||||||
Embargoed: | |||||||||
Bug Depends On: | 1469414, 1469415, 1471861 | ||||||||
Bug Blocks: | 1468570 | ||||||||
Attachments: |
|
Description
Adam Mariš
2017-07-07 11:45:28 UTC
Acknowledgments: Name: the FreeRADIUS project Upstream: Guido Vranken Created attachment 1295272 [details]
Proposed patch 1/2
Created attachment 1295273 [details]
Proposed patch 2/2
Created freeradius tracking bugs for this issue: Affects: fedora-all [bug 1471861] This issue has been addressed in the following products: Red Hat Enterprise Linux 7 Via RHSA-2017:2389 https://access.redhat.com/errata/RHSA-2017:2389 External References: http://freeradius.org/security/fuzzer-2017.html |