PT-2017-11662 · Freeradius+4 · Freeradius+4

Published

2017-07-17

·

Updated

2024-06-15

·

CVE-2017-10985

CVSS v2.0

7.8

High

VectorAV:N/AC:L/Au:N/C:N/I:N/A:C
Name of the Vulnerable Software and Affected Versions FreeRADIUS versions 3.x before 3.0.15
Description The issue allows for an infinite loop and memory exhaustion with 'concat' attributes, leading to a denial of service.
Recommendations For FreeRADIUS versions 3.x before 3.0.15, update to version 3.0.15 or later to resolve the issue.

Fix

DoS

Infinite Loop

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-835

Related Identifiers

CESA-2017_2389
CVE-2017-10985
DSA-3930-1
MGASA-2017-0232
OPENSUSE-SU-2017_2270-1
OPENSUSE-SU-2024:10767-1
RHSA-2017:2389
RHSA-2017_2389
SUSE-SU-2017:2202-1
SUSE-SU-2017:2243-1
USN-3369-1

Affected Products

Centos
Freeradius
Red Hat
Suse
Ubuntu