Gentoo Security Advisory GLSA 200704-14 (FreeRADIUS) Network Vulnerability

Summary

The remote host is missing updates announced in advisory GLSA 200704-14.

Solution

All FreeRADIUS users should upgrade to the latest version: # emerge --sync # emerge --ask --oneshot --verbose '>=net-dialup/freeradius-1.1.6' http://www.securityspace.com/smysecure/catid.html?in=GLSA%20200704-14 http://bugs.gentoo.org/show_bug.cgi?id=174292

Insight

A memory leak has been discovered in FreeRADIUS, possibly allowing for a Denial of Service.

Severity

Classification

CVE CVE-2007-2028

CVSS	Base Score: 5.0 AV:N/AC:L/Au:N/C:N/I:N/A:P

Related Vulnerabilities

Gentoo Security Advisory GLSA 200403-12 (openldap)
Gentoo Security Advisory GLSA 200410-26 (socat)
Gentoo Security Advisory GLSA 200402-04 (Gallery)
Gentoo Security Advisory GLSA 200412-05 (mirrorselect)
Gentoo Security Advisory GLSA 200406-12 (webmin)

Take action and discover your vulnerabilities