Explore top 10 tips to secure your open-source projects now. Read More

×
Alerts This Week
Warning Icon 1 454
Alerts This Week
Warning Icon 1 454

Mageia 8: 2022-0482 Critical: Freeradius Information Leakage and Crashes

mageia
Calendar Grey December 30, 2022
Dist Mageia Esm H88
Enhanced freeradius updates resolve various security vulnerabilities in Mageia, tackling data exposure risks and system instability.
Information leakage in EAP-PWD

Summary

Information leakage in EAP-PWD. (CVE-2022-41859) Crash on unknown option in EAP-SIM. (CVE-2022-41860) Crash on invalid abinary data. (CVE-2022-41861)

References

- https://bugs.mageia.org/show_bug.cgi?id=31291

- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/thread/GZM4O5MGLKNOE2SSXAXQNL5DSII556QA/

-

- https://www.cve.org/CVERecord?id=CVE-2022-41859

- https://www.cve.org/CVERecord?id=CVE-2022-41860

- https://www.cve.org/CVERecord?id=CVE-2022-41861

Resolution

SRPMS

- 8/core/freeradius-3.0.22-1.1.mga8

Severity
critical
Lowest
Low
Medium
High
Critical

Publication date: 30 Dec 2022
URL: https://advisories.mageia.org/MGASA-2022-0482.html
Type: security
CVE: CVE-2022-41859, CVE-2022-41860, CVE-2022-41861

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.