Ubuntu USN-832-1 (freeradius) Network Vulnerability

Summary

The remote host is missing an update to freeradius announced via advisory USN-832-1.

Solution

The problem can be corrected by upgrading your system to the following package versions: Ubuntu 8.04 LTS: freeradius 1.1.7-1ubuntu0.2 In general, a standard system upgrade is sufficient to effect the necessary changes. https://secure1.securityspace.com/smysecure/catid.html?in=USN-832-1

Insight

It was discovered that FreeRADIUS did not correctly handle certain malformed attributes. A remote attacker could exploit this flaw and cause the FreeRADIUS server to crash, resulting in a denial of service.

Severity

Classification

CVE CVE-2009-3111
CVSS Base Score: 5.0
AV:N/AC:L/Au:N/C:N/I:N/A:P

Related Vulnerabilities

Ubuntu Update for bind9 vulnerability USN-622-1
Ubuntu Update for bzip2 USN-1308-1
Ubuntu Update for cups, cupsys vulnerabilities USN-906-1
Ubuntu Update for cups USN-1207-1
Ubuntu Update for backuppc USN-1249-1

Take action and discover your vulnerabilities