Mageia 9: MGASA-2024-0264 Critical: Freeradius Authentication Bypass
mageia
July 14, 2024
This vulnerability allows an attacker performing a meddler-in-the-middle attack between Palo Alto Networks PAN-OS firewall and a RADIUS server to bypass authentication and escalate...
Summary
This vulnerability allows an attacker performing a meddler-in-the-middle
attack between Palo Alto Networks PAN-OS firewall and a RADIUS server to
bypass authentication and escalate privileges to âsuperuserâ when RADIUS
authentication is in use and either CHAP or PAP is selected in the
RADIUS server profile.
CHAP and PAP are protocols with no Transport Layer Security (TLS), and
hence vulnerable to meddler-in-the-middle attacks. Neither protocol
should be used unless they are encapsulated by an encrypted tunnel. If
they are in use, but are encapsulated within a TLS tunnel, they are not
vulnerable to this attack.
For additional information regarding this vulnerability, please see
https://www.blastradius.fail/.
Note: these two lines are added upstream in the default radiusd.conf
file:
"""
require_message_authenticator = auto
limit_proxy_state = auto
"""
References
- https://bugs.mageia.org/show_bug.cgi?id=33388
- https://www-fr.freeradius.org/security/
- https://www.openwall.com/lists/oss-security/2024/07/09/4
- https://www.cve.org/CVERecord?id=CVE-2024-3596
Resolution
SRPMS
- 9/core/freeradius-3.0.27-1.mga9
PREVIOUS
NEXT
Severity
critical
Lowest
Low
Medium
High
Critical
Publication date: 14 Jul 2024
URL: https://advisories.mageia.org/MGASA-2024-0264.html
Type: security
CVE: CVE-2024-3596
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Related News
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!