Ubuntu
freeradius package

Branches for Dapper

Name Status Last Modified Last Commit
lp:ubuntu/dapper/freeradius 1 Development 2009-07-03 18:05:38 UTC
10. Init script makes sure /var/run/freer...

Author: Jérémie Corbier
Revision Date: 2006-05-08 23:31:14 UTC

Init script makes sure /var/run/freeradius exists and is owned by the
the right user (Closes: Malone #39205).
lp:ubuntu/dapper-security/freeradius bug 1 Development 2009-07-03 18:07:19 UTC
11. * SECURITY UPDATE: possible EAP-MSCHA...

Author: William Grant
Revision Date: 2007-11-20 19:26:16 UTC

* SECURITY UPDATE: possible EAP-MSCHAPv2 authentication bypass (LP:
  #164000) and denial of service in EAP-TTLS module (LP: #106006).
* debian/patches/20_CVE-2006-1354.dpatch: Properly validate input, to ensure
  that bad authentication requests are rejected. Patch from upstream CVS.
* debian/patches/21_CVE-2007-2028.dpatch: Properly free VALUE_PAIR
  structures on rejected authentication, to avoid memory leaks. Patch from
  Red Hat Bugzilla.
* References
  CVE-2006-1354
  CVE-2007-2028
lp:ubuntu/dapper-updates/freeradius 1 Development 2009-07-03 18:05:48 UTC
11. * SECURITY UPDATE: possible EAP-MSCHA...

Author: William Grant
Revision Date: 2007-11-20 19:26:16 UTC

* SECURITY UPDATE: possible EAP-MSCHAPv2 authentication bypass (LP:
  #164000) and denial of service in EAP-TTLS module (LP: #106006).
* debian/patches/20_CVE-2006-1354.dpatch: Properly validate input, to ensure
  that bad authentication requests are rejected. Patch from upstream CVS.
* debian/patches/21_CVE-2007-2028.dpatch: Properly free VALUE_PAIR
  structures on rejected authentication, to avoid memory leaks. Patch from
  Red Hat Bugzilla.
* References
  CVE-2006-1354
  CVE-2007-2028
13 of 3 results FirstPreviousNextLast