Secunia Logo  
 Vulnerability IntelligenceVulnerability ScanningCommunityBlogCorporate InformationOnline ShopCustomer Login  
 Secunia AdvisoriesSecunia ResearchBinary Analysis  
Home > Vulnerability Intelligence > Secunia Advisories > SUSE update for freeradius
Secunia Advisories
Advisories
Search
Advisories by Product
Advisories by Vendor
Historic Advisories
Mailing Lists & RSS
Report Vulnerability
Contact Form
Business Solutions Restricted
Partner Solutions Restricted
About
 
SUSE update for freeradius
Secunia Advisory: SA19405
Advisory Toolbox:
Issue ticket
Save in to-do list
Mark as handled
Exploit information
Download as PDF
Review actions
Add comment
Release Date: 2006-03-28
Popularity: 6,528 views

Critical:
Less critical
Impact: Security Bypass
DoS
Where: From local network
Solution Status: Vendor Patch

OS:SUSE Linux 10
SuSE Linux 9.1
SUSE Linux 9.2
SUSE Linux 9.3
SUSE Linux Enterprise Server 9
Subscribe: Instant alerts on relevant vulnerabilities

CVE reference:CVE-2006-1354
Description:
SUSE has issued an update for freeradius. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service) and to bypass certain security restrictions.

For more information:
SA19300

Solution:
Apply updated packages.

-- x86 Platform --

SUSE LINUX 10.0:
ftp://ftp.suse.com/pub/suse/i386/upda...pm/i586/freeradius-1.0.4-4.2.i586.rpm
83c50d73afb03719528c847424179d54

SUSE LINUX 9.3:
ftp://ftp.suse.com/pub/suse/i386/upda...pm/i586/freeradius-1.0.2-5.7.i586.rpm
0bdb0b07c252fc2a6014f30a3898c4e9

SUSE LINUX 9.2:
ftp://ftp.suse.com/pub/suse/i386/upda...pm/i586/freeradius-1.0.0-5.8.i586.rpm
e28918518daba17fb32685179b3cee20

SUSE LINUX 9.1:
ftp://ftp.suse.com/pub/suse/i386/upda...m/i586/freeradius-1.0.5-2.14.i586.rpm
9dcb23e71a735ce675f349f673c5441e

-- Power PC Platform --

SUSE LINUX 10.0:
ftp://ftp.suse.com/pub/suse/i386/upda.../rpm/ppc/freeradius-1.0.4-4.2.ppc.rpm
7a4dc1e235c9f9dee719b1350044940f

-- x86-64 Platform --

SUSE LINUX 10.0:
ftp://ftp.suse.com/pub/suse/i386/upda...86_64/freeradius-1.0.4-4.2.x86_64.rpm
998a259dc0adf00b33bd78807785aaae

SUSE LINUX 9.3:
ftp://ftp.suse.com/pub/suse/i386/upda...86_64/freeradius-1.0.2-5.7.x86_64.rpm
c73ebda9ead7bc7fa97bc3de2886350f

SUSE LINUX 9.2:
ftp://ftp.suse.com/pub/suse/i386/upda...86_64/freeradius-1.0.0-5.8.x86_64.rpm
a60e2a98d954a9505dfba503ec0351c5

SUSE LINUX 9.1:
ftp://ftp.suse.com/pub/suse/x86_64/up...6_64/freeradius-1.0.5-2.14.x86_64.rpm
d02d45273ed3f2c58f5fd014f80efef6

-- Sources --

SUSE LINUX 10.0:
ftp://ftp.suse.com/pub/suse/i386/upda.../rpm/src/freeradius-1.0.4-4.2.src.rpm
0eee0bad3d082a2abe180744296e4826

SUSE LINUX 9.3:
ftp://ftp.suse.com/pub/suse/i386/update/9.3/rpm/src/freeradius-1.0.2-5.7.src.rpm
0992254448350dce633cdac1f3ec4349

SUSE LINUX 9.2:
ftp://ftp.suse.com/pub/suse/i386/update/9.2/rpm/src/freeradius-1.0.0-5.8.src.rpm
88142a6e271d6319d2cc86745399a578

SUSE LINUX 9.1:
ftp://ftp.suse.com/pub/suse/i386/upda...rpm/src/freeradius-1.0.5-2.14.src.rpm
5f75a329ee103fbb59e51d6b5a883d87
ftp://ftp.suse.com/pub/suse/x86_64/up...rpm/src/freeradius-1.0.5-2.14.src.rpm
b96eadb419be2b7288e48d6b58ea7e0b

Original Advisory:
http://lists.suse.de/archive/suse-security-announce/2006-Mar/0009.html

Other References:
SA19300:
http://secunia.com/advisories/19300/

Track this Secunia Advisory
Customers of the Secunia Vulnerability Intelligence solutions will automatically receive updates when new information regarding this advisory is released.

Read more about our Vulnerability Intelligence solutions and what they can do for you and your company.

About this Secunia Advisory
Please note: The information that this Secunia Advisory is based on comes from a third party unless stated otherwise.

Secunia collects, validates, and verifies all vulnerability reports issued by security research groups, vendors, and others.
  
Latest Advisories

7th Jan, 2009
New advisories: 31
New vulnerabilities: 90
Updated advisories: 37

Less // 444 views
Joomla! "X_CMS_LIBRARY_PATH" Directory Traversal Vulnerability
Moderately // 252 views
Red Hat update for xterm
Not // 235 views
Red Hat update for dbus
Moderately // 325 views
Red Hat update for openssl
Moderately // 493 views
OpenSSL DSA / ECDSA "EVP_VerifyFinal()" Spoofing Vulnerability
Less // 255 views
vBulletin Personal Sticky Threads Add-on Security Bypass Vulnerability
Moderately // 224 views
BlogHelper "common_db.inc" Information Disclosure Security Issue
Moderately // 216 views
PollHelper "poll.inc" Information Disclosure Security Issue
Highly // 295 views
ComponentOne SizerOne CTab ActiveX Control Caption List Buffer Overflow
Highly // 263 views
TSC2 Help Desk CTab ActiveX Control Caption List Buffer Overflow

Solutions | More...  

Send Feedback to Secunia
If you have new information regarding this Secunia advisory or a product in our database, please send it to us using either our web form or email us at vuln@secunia.com.

Ideas, suggestions, and other feedback are most welcome.

Most Popular - 3 Hours

1. Joomla! "X_CMS_LIBRARY_PATH" Directory Traversal Vulnerability // 65 views
2. OpenSSL DSA / ECDSA "EVP_VerifyFinal()" Spoofing Vulnerability // 55 views
3. Symantec Mail Security for SMTP Response Handling Denial of Service // 40 views
4. SAP GUI TabOne ActiveX Control Caption List Buffer Overflow // 35 views
5. Red Hat update for openssl // 33 views
6. Red Hat update for dbus // 33 views
7. HP OpenView Network Node Manager Multiple Vulnerabilities // 33 views
8. vBulletin Personal Sticky Threads Add-on Security Bypass Vulnerability // 30 views
9. ComponentOne SizerOne CTab ActiveX Control Caption List Buffer Overflow // 29 views
10. Red Hat update for xterm // 26 views



Contact | Terms & Conditions and Copyright | Report Vulnerability | Press | Jobs | About Secunia
Copyright Secunia 2002-2009