Ubuntu USN-832-1 (freeradius) Network Vulnerability

Summary

The remote host is missing an update to freeradius announced via advisory USN-832-1.

Solution

The problem can be corrected by upgrading your system to the following package versions: Ubuntu 8.04 LTS: freeradius 1.1.7-1ubuntu0.2 In general, a standard system upgrade is sufficient to effect the necessary changes. https://secure1.securityspace.com/smysecure/catid.html?in=USN-832-1

Insight

It was discovered that FreeRADIUS did not correctly handle certain malformed attributes. A remote attacker could exploit this flaw and cause the FreeRADIUS server to crash, resulting in a denial of service.

Severity

Classification

CVE CVE-2009-3111

CVSS	Base Score: 5.0 AV:N/AC:L/Au:N/C:N/I:N/A:P

Related Vulnerabilities

Ubuntu Update for clamav USN-1482-3
Ubuntu Update for avahi vulnerability USN-402-1
Ubuntu Update for bzip2 vulnerability USN-590-1
Ubuntu Update for backuppc USN-1444-1
Ubuntu Update for cups-filters USN-2143-1

Take action and discover your vulnerabilities