pkg:Debian/freeradius
49 total CVEsCRITICAL6HIGH17MEDIUM2
✅ Check your installed version
All known vulnerabilities
- CRITICAL9.8CVE-2019-11235FreeRADIUS before 3.0.19 mishandles the "each participant verifies that the received scalar is within a range, and that the received group…from 0, < 3.0.17+dfsg-1.1
- CRITICAL9.8CVE-2019-11234FreeRADIUS before 3.0.19 does not prevent use of reflection for authentication spoofing, aka a "Dragonblood" issue, a similar issue to CVE-…from 0, < 3.0.17+dfsg-1.1
- CRITICAL9.8CVE-2017-10984An FR-GV-301 issue in FreeRADIUS 3.x before 3.0.15 allows "Write overflow in data2vp_wimax()" - this allows remote attackers to cause a den…from 0, < 3.0.15+dfsg-1
- CRITICAL9.8CVE-2017-10979An FR-GV-202 issue in FreeRADIUS 2.x before 2.2.10 allows "Write overflow in rad_coalesce()" - this allows remote attackers to cause a deni…from 0, < 3.0.12+dfsg-3
- CRITICAL9.8CVE-2017-9148The TLS session cache in FreeRADIUS 2.1.1 through 2.1.7, 3.0.x before 3.0.14, 3.1.x before 2017-02-04, and 4.0.x before 2017-02-04 fails to…from 0, < 3.0.12+dfsg-5
- CRITICAL9.0CVE-2024-3596RADIUS Protocol under RFC 2865 is susceptible to forgery attacks by a local attacker who can modify any valid Response (Access-Accept, Acce…from 0
- HIGH7.5CVE-2022-41860In freeradius, when an EAP-SIM supplicant sends an unknown SIM option, the server will try to look that option up in the internal dictionar…from 0, < 3.0.21+dfsg-2.2+deb11u2
- from 0, < 3.0.21+dfsg-2.2+deb11u2
- from 0, < 3.0.17+dfsg-1.1+deb10u2
- from 0, < 3.0.21+dfsg-2.2+deb11u2
- HIGH7.5CVE-2019-17185In FreeRADIUS 3.0.x before 3.0.20, the EAP-pwd module used a global OpenSSL BN_CTX instance to handle all handshakes.from 0, < 3.0.20+dfsg-1
- HIGH7.5CVE-2017-10987An FR-GV-304 issue in FreeRADIUS 3.x before 3.0.15 allows "DHCP - Buffer over-read in fr_dhcp_decode_suboptions()" and a denial of service.from 0, < 3.0.15+dfsg-1
- HIGH7.5CVE-2017-10986An FR-GV-303 issue in FreeRADIUS 3.x before 3.0.15 allows "DHCP - Infinite read in dhcp_attr2vp()" and a denial of service.from 0, < 3.0.15+dfsg-1
- HIGH7.5CVE-2017-10985An FR-GV-302 issue in FreeRADIUS 3.x before 3.0.15 allows "Infinite loop and memory exhaustion with 'concat' attributes" and a denial of se…from 0, < 3.0.15+dfsg-1
- HIGH7.5CVE-2017-10983An FR-GV-206 issue in FreeRADIUS 2.x before 2.2.10 and 3.x before 3.0.15 allows "DHCP - Read overflow when decoding option 63" and a denial…from 0, < 3.0.15+dfsg-1
- HIGH7.5CVE-2017-10982An FR-GV-205 issue in FreeRADIUS 2.x before 2.2.10 allows "DHCP - Buffer over-read in fr_dhcp_decode_options()" and a denial of service.from 0, < 3.0.12+dfsg-3
- HIGH7.5CVE-2017-10981An FR-GV-204 issue in FreeRADIUS 2.x before 2.2.10 allows "DHCP - Memory leak in fr_dhcp_decode()" and a denial of service.from 0, < 3.0.12+dfsg-3
- HIGH7.5CVE-2017-10980An FR-GV-203 issue in FreeRADIUS 2.x before 2.2.10 allows "DHCP - Memory leak in decode_tlv()" and a denial of service.from 0, < 3.0.12+dfsg-3
- from 0, < 2.1.12+dfsg-1.2+deb7u2
- from 0, < 2.2.5+dfsg-0.2+deb8u1
- from 0, < 3.0.15+dfsg-1
- HIGH7.5CVE-2015-4680FreeRADIUS 2.2.x before 2.2.8 and 3.0.x before 3.0.9 does not properly check revocation of intermediate CA certificates.from 0, < 2.2.8+dfsg-0.1
- HIGH7.0CVE-2019-10143It was discovered freeradius up to and including version 3.0.19 does not correctly configure logrotate, allowing a local attacker who alrea…from 0
- from 0, < 3.0.21+dfsg-2.2+deb11u2
- MEDIUM6.5CVE-2019-13456In FreeRADIUS 3.0 through 3.0.19, on average 1 in every 2048 EAP-pwd handshakes fails because the password element cannot be found within 1…from 0, < 3.0.20+dfsg-1
- from 0, < 2.1.12+dfsg-1.2+deb7u1
- from 0, < 2.2.5+dfsg-0.1
- —CVE-2011-4966modules/rlm_unix/rlm_unix.c in FreeRADIUS before 2.2.0, when unix mode is enabled for user authentication, does not properly check the pass…from 0, < 2.1.12+dfsg-1.2
- from 0, < 2.1.12+dfsg-1.1
- from 0, < 2.1.10+dfsg-2+squeeze1
- —CVE-2010-3697The wait_for_child_to_die function in main/event.c in FreeRADIUS 2.1.x before 2.1.10, in certain circumstances involving long-term database…from 0, < 2.1.10+dfsg-1
- —CVE-2010-3696The fr_dhcp_decode function in lib/dhcp.c in FreeRADIUS 2.1.9, in certain non-default builds, does not properly handle the DHCP Relay Agent…from 0, < 2.1.10+dfsg-1
- —CVE-2009-3111The rad_decode function in FreeRADIUS before 1.1.8 allows remote attackers to cause a denial of service (radiusd crash) via zero-length Tun…from 0, < 2.0.0-1
- —CVE-2008-4474freeradius-dialupadmin in freeradius 2.0.4 allows local users to overwrite arbitrary files via a symlink attack on temporary files in (1) b…from 0, < 2.0.4+dfsg-6
- —CVE-2007-2028Memory leak in freeRADIUS 1.1.5 and earlier allows remote attackers to cause a denial of service (memory consumption) via a large number of…from 0, < 1.1.6-1
- —CVE-2007-0080Buffer overflow in the SMB_Connect_Server function in FreeRadius 1.1.3 and earlier allows attackers to execute arbitrary code related to th…from 0, < 3.0.12+dfsg-3
- —CVE-2006-1354Unspecified vulnerability in FreeRADIUS 1.0.0 up to 1.1.0 allows remote attackers to bypass authentication or cause a denial of service (se…from 0, < 1.1.0-1.2
- from 0, < 1.0.5-1
- —CVE-2005-4746Multiple buffer overflows in FreeRADIUS 1.0.3 and 1.0.4 allow remote attackers to cause denial of service (crash) via (1) the rlm_sqlcounte…from 0, < 1.0.5-1
- from 0, < 1.0.5-1
- from 0, < 1.0.2-4sarge1
- from 0, < 1.0.2-4sarge3
- —CVE-2005-1454SQL injection vulnerability in the radius_xlat function in the SQL module for FreeRADIUS 1.0.2 and earlier allows remote authenticated user…from 0, < 1.0.2-4
- —CVE-2005-1455Buffer overflow in the sql_escape_func function in the SQL module for FreeRADIUS 1.0.2 and earlier allows remote attackers to cause a denia…from 0, < 1.0.2-4
- —CVE-2004-0961Memory leak in FreeRADIUS before 1.0.1 allows remote attackers to cause a denial of service (memory exhaustion) via a series of Access-Requ…from 0, < 1.0.1
- —CVE-2004-0960FreeRADIUS before 1.0.1 allows remote attackers to cause a denial of service (core dump) via malformed USR vendor-specific attributes (VSA)…from 0, < 1.0.1
- —CVE-2004-0938FreeRADIUS before 1.0.1 allows remote attackers to cause a denial of service (server crash) by sending an Ascend-Send-Secret attribute with…from 0, < 1.0.1
- —CVE-2003-0967rad_decode in FreeRADIUS 0.9.2 and earlier allows remote attackers to cause a denial of service (crash) via a short RADIUS string attribute…from 0, < 0.9.2-4
- —CVE-2003-0968Stack-based buffer overflow in SMB_Logon_Server of the rlm_smb experimental module for FreeRADIUS 0.9.3 and earlier allows remote attackers…from 0, < 1.0.1