ELSA-2017-1759

ULN >
Oracle Linux Errata repository >
ELSA-2017-1759

ELSA-2017-1759 - freeradius security update

Type:	SECURITY
Impact:	IMPORTANT
Release Date:	2017-07-18

Description

[2.2.6-7]
- Resolves: Bug#1469115 CVE-2017-10979 freeradius: Out-of-bounds write in
rad_coalesce()
- Resolves: Bug#1469118 CVE-2017-10978 freeradius: Out-of-bounds read/write
due to improper output buffer size check in make_secret()
- Resolves: Bug#1469120 CVE-2017-10980 freeradius: Memory leak in decode_tlv()
- Resolves: Bug#1469122 CVE-2017-10981 freeradius: Memory leak in
fr_dhcp_decode()
- Resolves: Bug#1469124 CVE-2017-10982 freeradius: Out-of-bounds read in
fr_dhcp_decode_options()
- Resolves: Bug#1469126 CVE-2017-10983 freeradius: Out-of-bounds read in
fr_dhcp_decode() when decoding option 63

Related CVEs

Updated Packages

Release/Architecture	Filename	sha256	Superseded By Advisory	Channel Label

Oracle Linux 6 (i386)	freeradius-2.2.6-7.el6_9.src.rpm	a09a24186ed170387d7d93a4f611e4d00ddd62b62e6bfa767950242056df2b2c	-	ol6_i386_latest
	freeradius-2.2.6-7.el6_9.src.rpm	a09a24186ed170387d7d93a4f611e4d00ddd62b62e6bfa767950242056df2b2c	-	ol6_i386_latest_archive
	freeradius-2.2.6-7.el6_9.src.rpm	a09a24186ed170387d7d93a4f611e4d00ddd62b62e6bfa767950242056df2b2c	-	ol6_u10_i386_base
	freeradius-2.2.6-7.el6_9.src.rpm	a09a24186ed170387d7d93a4f611e4d00ddd62b62e6bfa767950242056df2b2c	-	ol6_u9_i386_patch
	freeradius-2.2.6-7.el6_9.i686.rpm	0bc66f9e6d728ecf2fa291af0688dbfafc4f5455b5eb48ce2cf8a8bbf2f02cc3	-	ol6_i386_latest
	freeradius-2.2.6-7.el6_9.i686.rpm	0bc66f9e6d728ecf2fa291af0688dbfafc4f5455b5eb48ce2cf8a8bbf2f02cc3	-	ol6_i386_latest_archive
	freeradius-2.2.6-7.el6_9.i686.rpm	0bc66f9e6d728ecf2fa291af0688dbfafc4f5455b5eb48ce2cf8a8bbf2f02cc3	-	ol6_u10_i386_base
	freeradius-2.2.6-7.el6_9.i686.rpm	0bc66f9e6d728ecf2fa291af0688dbfafc4f5455b5eb48ce2cf8a8bbf2f02cc3	-	ol6_u9_i386_patch
	freeradius-krb5-2.2.6-7.el6_9.i686.rpm	2ffcd6337e9d644afb3c2df64e3916f2669ef87d364d9bda491ff9abbe863842	-	ol6_i386_latest
	freeradius-krb5-2.2.6-7.el6_9.i686.rpm	2ffcd6337e9d644afb3c2df64e3916f2669ef87d364d9bda491ff9abbe863842	-	ol6_i386_latest_archive
	freeradius-krb5-2.2.6-7.el6_9.i686.rpm	2ffcd6337e9d644afb3c2df64e3916f2669ef87d364d9bda491ff9abbe863842	-	ol6_u10_i386_base
	freeradius-krb5-2.2.6-7.el6_9.i686.rpm	2ffcd6337e9d644afb3c2df64e3916f2669ef87d364d9bda491ff9abbe863842	-	ol6_u9_i386_patch
	freeradius-ldap-2.2.6-7.el6_9.i686.rpm	793c0f18469cdf0c4c3d5f099e5a4a3c7c7d1a3eb7547c734714b9e2179f0624	-	ol6_i386_latest
	freeradius-ldap-2.2.6-7.el6_9.i686.rpm	793c0f18469cdf0c4c3d5f099e5a4a3c7c7d1a3eb7547c734714b9e2179f0624	-	ol6_i386_latest_archive
	freeradius-ldap-2.2.6-7.el6_9.i686.rpm	793c0f18469cdf0c4c3d5f099e5a4a3c7c7d1a3eb7547c734714b9e2179f0624	-	ol6_u10_i386_base
	freeradius-ldap-2.2.6-7.el6_9.i686.rpm	793c0f18469cdf0c4c3d5f099e5a4a3c7c7d1a3eb7547c734714b9e2179f0624	-	ol6_u9_i386_patch
	freeradius-mysql-2.2.6-7.el6_9.i686.rpm	5293ad4d6503e413b4155569c141a92a71f3193162697c6653a94e1f9ae6e2f3	-	ol6_i386_latest
	freeradius-mysql-2.2.6-7.el6_9.i686.rpm	5293ad4d6503e413b4155569c141a92a71f3193162697c6653a94e1f9ae6e2f3	-	ol6_i386_latest_archive
	freeradius-mysql-2.2.6-7.el6_9.i686.rpm	5293ad4d6503e413b4155569c141a92a71f3193162697c6653a94e1f9ae6e2f3	-	ol6_u10_i386_base
	freeradius-mysql-2.2.6-7.el6_9.i686.rpm	5293ad4d6503e413b4155569c141a92a71f3193162697c6653a94e1f9ae6e2f3	-	ol6_u9_i386_patch
	freeradius-perl-2.2.6-7.el6_9.i686.rpm	acd6770d1fb658ed090fdc627775465ab3007f5a1d48bc39c690c94bebe5d5ce	-	ol6_i386_latest
	freeradius-perl-2.2.6-7.el6_9.i686.rpm	acd6770d1fb658ed090fdc627775465ab3007f5a1d48bc39c690c94bebe5d5ce	-	ol6_i386_latest_archive
	freeradius-perl-2.2.6-7.el6_9.i686.rpm	acd6770d1fb658ed090fdc627775465ab3007f5a1d48bc39c690c94bebe5d5ce	-	ol6_u10_i386_base
	freeradius-perl-2.2.6-7.el6_9.i686.rpm	acd6770d1fb658ed090fdc627775465ab3007f5a1d48bc39c690c94bebe5d5ce	-	ol6_u9_i386_patch
	freeradius-postgresql-2.2.6-7.el6_9.i686.rpm	58492d6ca5da5e943f086c4b03086347f9b6764283747eadca5f65ae17553a98	-	ol6_i386_latest
	freeradius-postgresql-2.2.6-7.el6_9.i686.rpm	58492d6ca5da5e943f086c4b03086347f9b6764283747eadca5f65ae17553a98	-	ol6_i386_latest_archive
	freeradius-postgresql-2.2.6-7.el6_9.i686.rpm	58492d6ca5da5e943f086c4b03086347f9b6764283747eadca5f65ae17553a98	-	ol6_u10_i386_base
	freeradius-postgresql-2.2.6-7.el6_9.i686.rpm	58492d6ca5da5e943f086c4b03086347f9b6764283747eadca5f65ae17553a98	-	ol6_u9_i386_patch
	freeradius-python-2.2.6-7.el6_9.i686.rpm	0ba140e3a68299f9be288d243534881099e2723989ff026be45656f91b0ada07	-	ol6_i386_latest
	freeradius-python-2.2.6-7.el6_9.i686.rpm	0ba140e3a68299f9be288d243534881099e2723989ff026be45656f91b0ada07	-	ol6_i386_latest_archive
	freeradius-python-2.2.6-7.el6_9.i686.rpm	0ba140e3a68299f9be288d243534881099e2723989ff026be45656f91b0ada07	-	ol6_u10_i386_base
	freeradius-python-2.2.6-7.el6_9.i686.rpm	0ba140e3a68299f9be288d243534881099e2723989ff026be45656f91b0ada07	-	ol6_u9_i386_patch
	freeradius-unixODBC-2.2.6-7.el6_9.i686.rpm	161411b71667d851990cd77495620ae4337e7f5a55a77166bb008b9af4923988	-	ol6_i386_latest
	freeradius-unixODBC-2.2.6-7.el6_9.i686.rpm	161411b71667d851990cd77495620ae4337e7f5a55a77166bb008b9af4923988	-	ol6_i386_latest_archive
	freeradius-unixODBC-2.2.6-7.el6_9.i686.rpm	161411b71667d851990cd77495620ae4337e7f5a55a77166bb008b9af4923988	-	ol6_u10_i386_base
	freeradius-unixODBC-2.2.6-7.el6_9.i686.rpm	161411b71667d851990cd77495620ae4337e7f5a55a77166bb008b9af4923988	-	ol6_u9_i386_patch
	freeradius-utils-2.2.6-7.el6_9.i686.rpm	d02a134abdf08ad9d003fa157025e85fa587cd45c3208073c4127ac45b333a51	-	ol6_i386_latest
	freeradius-utils-2.2.6-7.el6_9.i686.rpm	d02a134abdf08ad9d003fa157025e85fa587cd45c3208073c4127ac45b333a51	-	ol6_i386_latest_archive
	freeradius-utils-2.2.6-7.el6_9.i686.rpm	d02a134abdf08ad9d003fa157025e85fa587cd45c3208073c4127ac45b333a51	-	ol6_u10_i386_base
	freeradius-utils-2.2.6-7.el6_9.i686.rpm	d02a134abdf08ad9d003fa157025e85fa587cd45c3208073c4127ac45b333a51	-	ol6_u9_i386_patch

Oracle Linux 6 (x86_64)	freeradius-2.2.6-7.el6_9.src.rpm	a09a24186ed170387d7d93a4f611e4d00ddd62b62e6bfa767950242056df2b2c	-	ol6_u10_x86_64_base
	freeradius-2.2.6-7.el6_9.src.rpm	a09a24186ed170387d7d93a4f611e4d00ddd62b62e6bfa767950242056df2b2c	-	ol6_u9_x86_64_patch
	freeradius-2.2.6-7.el6_9.src.rpm	a09a24186ed170387d7d93a4f611e4d00ddd62b62e6bfa767950242056df2b2c	-	ol6_x86_64_latest
	freeradius-2.2.6-7.el6_9.src.rpm	a09a24186ed170387d7d93a4f611e4d00ddd62b62e6bfa767950242056df2b2c	-	ol6_x86_64_latest_archive
	freeradius-2.2.6-7.el6_9.x86_64.rpm	2fa8b85c01a360270bf40539c1bfb30e30583a1d466bd82229b88f247f5cbbaf	-	ol6_u10_x86_64_base
	freeradius-2.2.6-7.el6_9.x86_64.rpm	2fa8b85c01a360270bf40539c1bfb30e30583a1d466bd82229b88f247f5cbbaf	-	ol6_u9_x86_64_patch
	freeradius-2.2.6-7.el6_9.x86_64.rpm	2fa8b85c01a360270bf40539c1bfb30e30583a1d466bd82229b88f247f5cbbaf	-	ol6_x86_64_latest
	freeradius-2.2.6-7.el6_9.x86_64.rpm	2fa8b85c01a360270bf40539c1bfb30e30583a1d466bd82229b88f247f5cbbaf	-	ol6_x86_64_latest_archive
	freeradius-krb5-2.2.6-7.el6_9.x86_64.rpm	6a106c9c20ba608e1dbd7ba27677aa5decb5a9b0331261740a7dad949c875dd5	-	ol6_u10_x86_64_base
	freeradius-krb5-2.2.6-7.el6_9.x86_64.rpm	6a106c9c20ba608e1dbd7ba27677aa5decb5a9b0331261740a7dad949c875dd5	-	ol6_u9_x86_64_patch
	freeradius-krb5-2.2.6-7.el6_9.x86_64.rpm	6a106c9c20ba608e1dbd7ba27677aa5decb5a9b0331261740a7dad949c875dd5	-	ol6_x86_64_latest
	freeradius-krb5-2.2.6-7.el6_9.x86_64.rpm	6a106c9c20ba608e1dbd7ba27677aa5decb5a9b0331261740a7dad949c875dd5	-	ol6_x86_64_latest_archive
	freeradius-ldap-2.2.6-7.el6_9.x86_64.rpm	c2d3a830ed39eb7c15f219764dc93dba0f5f002352b4bf67a2f4fd1783b2a317	-	ol6_u10_x86_64_base
	freeradius-ldap-2.2.6-7.el6_9.x86_64.rpm	c2d3a830ed39eb7c15f219764dc93dba0f5f002352b4bf67a2f4fd1783b2a317	-	ol6_u9_x86_64_patch
	freeradius-ldap-2.2.6-7.el6_9.x86_64.rpm	c2d3a830ed39eb7c15f219764dc93dba0f5f002352b4bf67a2f4fd1783b2a317	-	ol6_x86_64_latest
	freeradius-ldap-2.2.6-7.el6_9.x86_64.rpm	c2d3a830ed39eb7c15f219764dc93dba0f5f002352b4bf67a2f4fd1783b2a317	-	ol6_x86_64_latest_archive
	freeradius-mysql-2.2.6-7.el6_9.x86_64.rpm	abf9911a76aeffe2b1cf95ab29aa0dadf6449536722432c4828dc78a0d419595	-	ol6_u10_x86_64_base
	freeradius-mysql-2.2.6-7.el6_9.x86_64.rpm	abf9911a76aeffe2b1cf95ab29aa0dadf6449536722432c4828dc78a0d419595	-	ol6_u9_x86_64_patch
	freeradius-mysql-2.2.6-7.el6_9.x86_64.rpm	abf9911a76aeffe2b1cf95ab29aa0dadf6449536722432c4828dc78a0d419595	-	ol6_x86_64_latest
	freeradius-mysql-2.2.6-7.el6_9.x86_64.rpm	abf9911a76aeffe2b1cf95ab29aa0dadf6449536722432c4828dc78a0d419595	-	ol6_x86_64_latest_archive
	freeradius-perl-2.2.6-7.el6_9.x86_64.rpm	98249e2baedee85f0b15e8238c74ff76052837b13ea826839d2261771310ee44	-	ol6_u10_x86_64_base
	freeradius-perl-2.2.6-7.el6_9.x86_64.rpm	98249e2baedee85f0b15e8238c74ff76052837b13ea826839d2261771310ee44	-	ol6_u9_x86_64_patch
	freeradius-perl-2.2.6-7.el6_9.x86_64.rpm	98249e2baedee85f0b15e8238c74ff76052837b13ea826839d2261771310ee44	-	ol6_x86_64_latest
	freeradius-perl-2.2.6-7.el6_9.x86_64.rpm	98249e2baedee85f0b15e8238c74ff76052837b13ea826839d2261771310ee44	-	ol6_x86_64_latest_archive
	freeradius-postgresql-2.2.6-7.el6_9.x86_64.rpm	bf686054763a96c724201f576d7b791b50da69bbb310d66f34f46f41bc36af4b	-	ol6_u10_x86_64_base
	freeradius-postgresql-2.2.6-7.el6_9.x86_64.rpm	bf686054763a96c724201f576d7b791b50da69bbb310d66f34f46f41bc36af4b	-	ol6_u9_x86_64_patch
	freeradius-postgresql-2.2.6-7.el6_9.x86_64.rpm	bf686054763a96c724201f576d7b791b50da69bbb310d66f34f46f41bc36af4b	-	ol6_x86_64_latest
	freeradius-postgresql-2.2.6-7.el6_9.x86_64.rpm	bf686054763a96c724201f576d7b791b50da69bbb310d66f34f46f41bc36af4b	-	ol6_x86_64_latest_archive
	freeradius-python-2.2.6-7.el6_9.x86_64.rpm	98427120cd4753860e865974b2a04b815f114af69142fff9c3e2073dbd09de87	-	ol6_u10_x86_64_base
	freeradius-python-2.2.6-7.el6_9.x86_64.rpm	98427120cd4753860e865974b2a04b815f114af69142fff9c3e2073dbd09de87	-	ol6_u9_x86_64_patch
	freeradius-python-2.2.6-7.el6_9.x86_64.rpm	98427120cd4753860e865974b2a04b815f114af69142fff9c3e2073dbd09de87	-	ol6_x86_64_latest
	freeradius-python-2.2.6-7.el6_9.x86_64.rpm	98427120cd4753860e865974b2a04b815f114af69142fff9c3e2073dbd09de87	-	ol6_x86_64_latest_archive
	freeradius-unixODBC-2.2.6-7.el6_9.x86_64.rpm	cbc10111fca045ed4103d640f708f035ba7faef61fa711c52f2078ac237af13a	-	ol6_u10_x86_64_base
	freeradius-unixODBC-2.2.6-7.el6_9.x86_64.rpm	cbc10111fca045ed4103d640f708f035ba7faef61fa711c52f2078ac237af13a	-	ol6_u9_x86_64_patch
	freeradius-unixODBC-2.2.6-7.el6_9.x86_64.rpm	cbc10111fca045ed4103d640f708f035ba7faef61fa711c52f2078ac237af13a	-	ol6_x86_64_latest
	freeradius-unixODBC-2.2.6-7.el6_9.x86_64.rpm	cbc10111fca045ed4103d640f708f035ba7faef61fa711c52f2078ac237af13a	-	ol6_x86_64_latest_archive
	freeradius-utils-2.2.6-7.el6_9.x86_64.rpm	d88261c6f72cb533f2f89e0ada216f5841d61100db362d1376b4d5afa80e5e3a	-	ol6_u10_x86_64_base
	freeradius-utils-2.2.6-7.el6_9.x86_64.rpm	d88261c6f72cb533f2f89e0ada216f5841d61100db362d1376b4d5afa80e5e3a	-	ol6_u9_x86_64_patch
	freeradius-utils-2.2.6-7.el6_9.x86_64.rpm	d88261c6f72cb533f2f89e0ada216f5841d61100db362d1376b4d5afa80e5e3a	-	ol6_x86_64_latest
	freeradius-utils-2.2.6-7.el6_9.x86_64.rpm	d88261c6f72cb533f2f89e0ada216f5841d61100db362d1376b4d5afa80e5e3a	-	ol6_x86_64_latest_archive

This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

Technical information

Oracle Linux Support

Connect

Contact Us

Global contacts
Oracle 1-800-633-0691