Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact

ALAS-2017-865

Related Vulnerabilities: CVE-2017-10978   CVE-2017-10979   CVE-2017-10980   CVE-2017-10981   CVE-2017-10982   CVE-2017-10983  

Out-of-bounds read in fr_dhcp_decode_options():An out-of-bounds read flaw was found in the way FreeRADIUS server handles decoding of DHCP packets. A remote attacker could use this flaw to crash the FreeRADIUS server by sending a specially crafted DHCP request. (CVE-2017-10982) Out-of-bounds read in fr_dhcp_decode() when decoding option 63:An out-of-bounds read flaw was found in the way FreeRADIUS server handled decoding of DHCP packets. A remote attacker could use this flaw to crash the FreeRADIUS server by sending a specially crafted DHCP request. (CVE-2017-10983) Memory leak in decode_tlv():A memory leak flaw was found in the way FreeRADIUS server handles decoding of DHCP packets. A remote attacker could use this flaw to cause the FreeRADIUS server to consume an increasing amount of memory resources over time possibly leading to a crash due to memory exhaustion. (CVE-2017-10980) Memory leak in fr_dhcp_decode():A memory leak flaw was found in the way FreeRADIUS server handles decoding of DHCP packets. A remote attacker could use this flaw to cause the FreeRADIUS server to consume an increasing amount of memory resources over time, possibly leading to a crash due to memory exhaustion, by sending specially crafted DHCP packets. (CVE-2017-10981) Out-of-bounds write in rad_coalesce():An out-of-bounds write flaw was found in the way FreeRADIUS server handled certain attributes in request packets. A remote attacker could use this flaw to crash the FreeRADIUS server or to execute arbitrary code in the context of the FreeRADIUS server process by sending a specially crafted request packet. (CVE-2017-10979) Out-of-bounds read/write due to improper output buffer size check in make_secret():An out-of-bounds read and write flaw was found in the way FreeRADIUS server handled RADIUS packets. A remote attacker could use this flaw to crash the FreeRADIUS server by sending a specially crafted RADIUS packet. (CVE-2017-10978)

Source

ALAS-2017-865

Amazon Linux AMI Security Advisory: ALAS-2017-865
Advisory Release Date: 2017-08-03 19:11 Pacific
Advisory Updated Date: 2017-08-04 00:47 Pacific
Severity: Important
Issue Overview:

Out-of-bounds read in fr_dhcp_decode_options():
An out-of-bounds read flaw was found in the way FreeRADIUS server handles decoding of DHCP packets. A remote attacker could use this flaw to crash the FreeRADIUS server by sending a specially crafted DHCP request. (CVE-2017-10982)

Out-of-bounds read in fr_dhcp_decode() when decoding option 63:
An out-of-bounds read flaw was found in the way FreeRADIUS server handled decoding of DHCP packets. A remote attacker could use this flaw to crash the FreeRADIUS server by sending a specially crafted DHCP request. (CVE-2017-10983)

Memory leak in decode_tlv():
A memory leak flaw was found in the way FreeRADIUS server handles decoding of DHCP packets. A remote attacker could use this flaw to cause the FreeRADIUS server to consume an increasing amount of memory resources over time possibly leading to a crash due to memory exhaustion. (CVE-2017-10980)

Memory leak in fr_dhcp_decode():
A memory leak flaw was found in the way FreeRADIUS server handles decoding of DHCP packets. A remote attacker could use this flaw to cause the FreeRADIUS server to consume an increasing amount of memory resources over time, possibly leading to a crash due to memory exhaustion, by sending specially crafted DHCP packets. (CVE-2017-10981)

Out-of-bounds write in rad_coalesce():
An out-of-bounds write flaw was found in the way FreeRADIUS server handled certain attributes in request packets. A remote attacker could use this flaw to crash the FreeRADIUS server or to execute arbitrary code in the context of the FreeRADIUS server process by sending a specially crafted request packet. (CVE-2017-10979)

Out-of-bounds read/write due to improper output buffer size check in make_secret():
An out-of-bounds read and write flaw was found in the way FreeRADIUS server handled RADIUS packets. A remote attacker could use this flaw to crash the FreeRADIUS server by sending a specially crafted RADIUS packet. (CVE-2017-10978)


Affected Packages:

freeradius


Issue Correction:
Run yum update freeradius to update your system.

New Packages:
i686:
    freeradius-mysql-2.2.6-7.16.amzn1.i686
    freeradius-ldap-2.2.6-7.16.amzn1.i686
    freeradius-krb5-2.2.6-7.16.amzn1.i686
    freeradius-python-2.2.6-7.16.amzn1.i686
    freeradius-unixODBC-2.2.6-7.16.amzn1.i686
    freeradius-postgresql-2.2.6-7.16.amzn1.i686
    freeradius-debuginfo-2.2.6-7.16.amzn1.i686
    freeradius-utils-2.2.6-7.16.amzn1.i686
    freeradius-perl-2.2.6-7.16.amzn1.i686
    freeradius-2.2.6-7.16.amzn1.i686

src:
    freeradius-2.2.6-7.16.amzn1.src

x86_64:
    freeradius-python-2.2.6-7.16.amzn1.x86_64
    freeradius-utils-2.2.6-7.16.amzn1.x86_64
    freeradius-mysql-2.2.6-7.16.amzn1.x86_64
    freeradius-2.2.6-7.16.amzn1.x86_64
    freeradius-debuginfo-2.2.6-7.16.amzn1.x86_64
    freeradius-perl-2.2.6-7.16.amzn1.x86_64
    freeradius-postgresql-2.2.6-7.16.amzn1.x86_64
    freeradius-unixODBC-2.2.6-7.16.amzn1.x86_64
    freeradius-ldap-2.2.6-7.16.amzn1.x86_64
    freeradius-krb5-2.2.6-7.16.amzn1.x86_64

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook

Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started