ELSA-2020-3984

ULN >
Oracle Linux Errata repository >
ELSA-2020-3984

ELSA-2020-3984 - freeradius security and bug fix update

Type:	SECURITY
Impact:	MODERATE
Release Date:	2020-10-06

Description

[3.0.13-15]
- Fixes EAP-PWD: DoS issues due to multithreaded BN_CTX access
Resolves: bz#1818808

[3.0.13-14
- Fixes receiving of multiple RADIUS packets under load
Resolves: bz#1630684

[3.0.13-13]
- Fixes logging of cleartext pap password
Resolves: bz#1677435

[3.0.13-12]
- Fixes paircompare with attribute references and expansions
Resolves: bz#1592741

[3.0.13-11]
- Fixes logrotate, EAP-PWD vulnerability
Resolves: bz#1719368 privilege escalation due to insecure logrotate configuration
Resolves: bz#1751796 eap-pwd: Information leak due to aborting when needing more than 10 iterations

Related CVEs

CVE-2019-13456

CVE-2019-10143

CVE-2019-17185

Updated Packages

Release/Architecture	Filename	sha256	Superseded By Advisory	Channel Label

Oracle Linux 7 (aarch64)	freeradius-3.0.13-15.el7.src.rpm	40f681972eb5fc274fb5566b3e757c8d6197099484a67ba1e1104a5d30b41155	ELSA-2024-4911	ol7_aarch64_beta
	freeradius-3.0.13-15.el7.src.rpm	40f681972eb5fc274fb5566b3e757c8d6197099484a67ba1e1104a5d30b41155	ELSA-2024-4911	ol7_aarch64_latest
	freeradius-3.0.13-15.el7.src.rpm	40f681972eb5fc274fb5566b3e757c8d6197099484a67ba1e1104a5d30b41155	ELSA-2024-4911	ol7_aarch64_optional_beta
	freeradius-3.0.13-15.el7.src.rpm	40f681972eb5fc274fb5566b3e757c8d6197099484a67ba1e1104a5d30b41155	ELSA-2024-4911	ol7_aarch64_optional_latest
	freeradius-3.0.13-15.el7.src.rpm	40f681972eb5fc274fb5566b3e757c8d6197099484a67ba1e1104a5d30b41155	ELSA-2024-4911	ol7_aarch64_u9_base
	freeradius-3.0.13-15.el7.aarch64.rpm	496f956cd051795c9d73e46863de2a34570c724fd2d82adb9a9e62b2689f7958	ELSA-2024-4911	ol7_aarch64_beta
	freeradius-3.0.13-15.el7.aarch64.rpm	496f956cd051795c9d73e46863de2a34570c724fd2d82adb9a9e62b2689f7958	ELSA-2024-4911	ol7_aarch64_latest
	freeradius-3.0.13-15.el7.aarch64.rpm	496f956cd051795c9d73e46863de2a34570c724fd2d82adb9a9e62b2689f7958	ELSA-2024-4911	ol7_aarch64_u9_base
	freeradius-devel-3.0.13-15.el7.aarch64.rpm	a7ca8e6aa678379b1645357c04cef23ea888c20ac35ba0122cee084cc7b2f97e	ELSA-2024-4911	ol7_aarch64_optional_beta
	freeradius-devel-3.0.13-15.el7.aarch64.rpm	a7ca8e6aa678379b1645357c04cef23ea888c20ac35ba0122cee084cc7b2f97e	ELSA-2024-4911	ol7_aarch64_optional_latest
	freeradius-doc-3.0.13-15.el7.aarch64.rpm	c1cf60e81f17d429561d5c25a82cb3e76399eb0c9dda21d9a217772b3b3f8afe	ELSA-2024-4911	ol7_aarch64_optional_beta
	freeradius-doc-3.0.13-15.el7.aarch64.rpm	c1cf60e81f17d429561d5c25a82cb3e76399eb0c9dda21d9a217772b3b3f8afe	ELSA-2024-4911	ol7_aarch64_optional_latest
	freeradius-krb5-3.0.13-15.el7.aarch64.rpm	2bfdca369c9abfefe05e604bbc5ee02dc8cdee93205785fcca175dd55181c956	ELSA-2024-4911	ol7_aarch64_optional_beta
	freeradius-krb5-3.0.13-15.el7.aarch64.rpm	2bfdca369c9abfefe05e604bbc5ee02dc8cdee93205785fcca175dd55181c956	ELSA-2024-4911	ol7_aarch64_optional_latest
	freeradius-ldap-3.0.13-15.el7.aarch64.rpm	74a6c92d08ab3d0a793ed41d2547abc39c16fc5ebc8a4376a7a679cbf0c1a089	ELSA-2024-4911	ol7_aarch64_optional_beta
	freeradius-ldap-3.0.13-15.el7.aarch64.rpm	74a6c92d08ab3d0a793ed41d2547abc39c16fc5ebc8a4376a7a679cbf0c1a089	ELSA-2024-4911	ol7_aarch64_optional_latest
	freeradius-mysql-3.0.13-15.el7.aarch64.rpm	6be0434533bc3f0da11d4e69fccdf4734b4837c1871f00de2a65d6058d140517	ELSA-2024-4911	ol7_aarch64_optional_beta
	freeradius-mysql-3.0.13-15.el7.aarch64.rpm	6be0434533bc3f0da11d4e69fccdf4734b4837c1871f00de2a65d6058d140517	ELSA-2024-4911	ol7_aarch64_optional_latest
	freeradius-perl-3.0.13-15.el7.aarch64.rpm	d0e91e74abe3b12f656c30f00f075d3771896e495d963446e9fe44428270ba99	ELSA-2024-4911	ol7_aarch64_optional_beta
	freeradius-perl-3.0.13-15.el7.aarch64.rpm	d0e91e74abe3b12f656c30f00f075d3771896e495d963446e9fe44428270ba99	ELSA-2024-4911	ol7_aarch64_optional_latest
	freeradius-postgresql-3.0.13-15.el7.aarch64.rpm	33b67b16a1b52c91c4e4638a3ccdea354a12824a3f3f76d14c66d09315f5d02a	ELSA-2024-4911	ol7_aarch64_optional_beta
	freeradius-postgresql-3.0.13-15.el7.aarch64.rpm	33b67b16a1b52c91c4e4638a3ccdea354a12824a3f3f76d14c66d09315f5d02a	ELSA-2024-4911	ol7_aarch64_optional_latest
	freeradius-python-3.0.13-15.el7.aarch64.rpm	a179b5c806039f31c3709aa6fa19fccb5da6494781eb1c6459f5221dfb9b0334	ELSA-2024-4911	ol7_aarch64_optional_beta
	freeradius-python-3.0.13-15.el7.aarch64.rpm	a179b5c806039f31c3709aa6fa19fccb5da6494781eb1c6459f5221dfb9b0334	ELSA-2024-4911	ol7_aarch64_optional_latest
	freeradius-sqlite-3.0.13-15.el7.aarch64.rpm	47b96d6b15fe4993efc96c0ad8530144b7e04b6ca222da3f12a059eac40c6bb2	ELSA-2024-4911	ol7_aarch64_optional_beta
	freeradius-sqlite-3.0.13-15.el7.aarch64.rpm	47b96d6b15fe4993efc96c0ad8530144b7e04b6ca222da3f12a059eac40c6bb2	ELSA-2024-4911	ol7_aarch64_optional_latest
	freeradius-unixODBC-3.0.13-15.el7.aarch64.rpm	6abbb2ec05217b1f14c1b456a495d437fca0a5ef00d2bc4794c47c99370a3053	ELSA-2024-4911	ol7_aarch64_optional_beta
	freeradius-unixODBC-3.0.13-15.el7.aarch64.rpm	6abbb2ec05217b1f14c1b456a495d437fca0a5ef00d2bc4794c47c99370a3053	ELSA-2024-4911	ol7_aarch64_optional_latest
	freeradius-utils-3.0.13-15.el7.aarch64.rpm	f47810ac329e12d8718d48fa02fedf253e126543620fae9a0eeb93b0315a498c	ELSA-2024-4911	ol7_aarch64_optional_beta
	freeradius-utils-3.0.13-15.el7.aarch64.rpm	f47810ac329e12d8718d48fa02fedf253e126543620fae9a0eeb93b0315a498c	ELSA-2024-4911	ol7_aarch64_optional_latest

Oracle Linux 7 (x86_64)	freeradius-3.0.13-15.el7.src.rpm	40f681972eb5fc274fb5566b3e757c8d6197099484a67ba1e1104a5d30b41155	ELSA-2024-4911	ol7_x86_64_beta
	freeradius-3.0.13-15.el7.src.rpm	40f681972eb5fc274fb5566b3e757c8d6197099484a67ba1e1104a5d30b41155	ELSA-2024-4911	ol7_x86_64_latest
	freeradius-3.0.13-15.el7.src.rpm	40f681972eb5fc274fb5566b3e757c8d6197099484a67ba1e1104a5d30b41155	ELSA-2024-4911	ol7_x86_64_optional_latest
	freeradius-3.0.13-15.el7.src.rpm	40f681972eb5fc274fb5566b3e757c8d6197099484a67ba1e1104a5d30b41155	ELSA-2024-4911	ol7_x86_64_u9_base
	freeradius-3.0.13-15.el7.x86_64.rpm	3759bfac5c7a7ca50a195a377566b7b470f089491c962bd0051710b5747c0734	ELSA-2024-4911	ol7_x86_64_beta
	freeradius-3.0.13-15.el7.x86_64.rpm	3759bfac5c7a7ca50a195a377566b7b470f089491c962bd0051710b5747c0734	ELSA-2024-4911	ol7_x86_64_latest
	freeradius-3.0.13-15.el7.x86_64.rpm	3759bfac5c7a7ca50a195a377566b7b470f089491c962bd0051710b5747c0734	ELSA-2024-4911	ol7_x86_64_u9_base
	freeradius-devel-3.0.13-15.el7.i686.rpm	89531ee7cacab406b0d87595ca694b88b851286bcdd12217f7ea6200f80ed434	ELSA-2024-4911	ol7_x86_64_optional_beta
	freeradius-devel-3.0.13-15.el7.i686.rpm	89531ee7cacab406b0d87595ca694b88b851286bcdd12217f7ea6200f80ed434	ELSA-2024-4911	ol7_x86_64_optional_latest
	freeradius-devel-3.0.13-15.el7.x86_64.rpm	cf5d88417b4feb1abe3c1a6bc8729e9e6c4cd0766cf012f1c4743f579308bba5	ELSA-2024-4911	ol7_x86_64_optional_beta
	freeradius-devel-3.0.13-15.el7.x86_64.rpm	cf5d88417b4feb1abe3c1a6bc8729e9e6c4cd0766cf012f1c4743f579308bba5	ELSA-2024-4911	ol7_x86_64_optional_latest
	freeradius-doc-3.0.13-15.el7.x86_64.rpm	31bb3dfee62061297e6ef09d0ffb3d83221ca55e7ce595e4a2e6337624f6c401	ELSA-2024-4911	ol7_x86_64_optional_beta
	freeradius-doc-3.0.13-15.el7.x86_64.rpm	31bb3dfee62061297e6ef09d0ffb3d83221ca55e7ce595e4a2e6337624f6c401	ELSA-2024-4911	ol7_x86_64_optional_latest
	freeradius-krb5-3.0.13-15.el7.x86_64.rpm	974d928e974888aeb13851a94f394f6308de58feea9d64b1631c9bbd07673103	ELSA-2024-4911	ol7_x86_64_optional_beta
	freeradius-krb5-3.0.13-15.el7.x86_64.rpm	974d928e974888aeb13851a94f394f6308de58feea9d64b1631c9bbd07673103	ELSA-2024-4911	ol7_x86_64_optional_latest
	freeradius-ldap-3.0.13-15.el7.x86_64.rpm	3c00b3b5a827c28f757891c9c65aa6124b55caf257e4c2979f4c96f88d1e45f8	ELSA-2024-4911	ol7_x86_64_optional_beta
	freeradius-ldap-3.0.13-15.el7.x86_64.rpm	3c00b3b5a827c28f757891c9c65aa6124b55caf257e4c2979f4c96f88d1e45f8	ELSA-2024-4911	ol7_x86_64_optional_latest
	freeradius-mysql-3.0.13-15.el7.x86_64.rpm	a0cb70f347c2f6f31dac425377992ffac8dcf74059b221edfe1ef98a90988857	ELSA-2024-4911	ol7_x86_64_optional_beta
	freeradius-mysql-3.0.13-15.el7.x86_64.rpm	a0cb70f347c2f6f31dac425377992ffac8dcf74059b221edfe1ef98a90988857	ELSA-2024-4911	ol7_x86_64_optional_latest
	freeradius-perl-3.0.13-15.el7.x86_64.rpm	3887735b3916768884c40bd0a9ee1969548df3119f89ad97c7b4433e8338f998	ELSA-2024-4911	ol7_x86_64_optional_beta
	freeradius-perl-3.0.13-15.el7.x86_64.rpm	3887735b3916768884c40bd0a9ee1969548df3119f89ad97c7b4433e8338f998	ELSA-2024-4911	ol7_x86_64_optional_latest
	freeradius-postgresql-3.0.13-15.el7.x86_64.rpm	9aa440d93c265994d6489022649183431b74c546de1aa39844593db5fcf3a79c	ELSA-2024-4911	ol7_x86_64_optional_beta
	freeradius-postgresql-3.0.13-15.el7.x86_64.rpm	9aa440d93c265994d6489022649183431b74c546de1aa39844593db5fcf3a79c	ELSA-2024-4911	ol7_x86_64_optional_latest
	freeradius-python-3.0.13-15.el7.x86_64.rpm	30e5e945bef735e5f9eb2cc9e8d9b0e5bc6960295e5df2494e6a76b8e34636b7	ELSA-2024-4911	ol7_x86_64_optional_beta
	freeradius-python-3.0.13-15.el7.x86_64.rpm	30e5e945bef735e5f9eb2cc9e8d9b0e5bc6960295e5df2494e6a76b8e34636b7	ELSA-2024-4911	ol7_x86_64_optional_latest
	freeradius-sqlite-3.0.13-15.el7.x86_64.rpm	141796dd010a793105a87f5ff3a5fae7a2ed997345e4d1cbcd59a3f92bb45853	ELSA-2024-4911	ol7_x86_64_optional_beta
	freeradius-sqlite-3.0.13-15.el7.x86_64.rpm	141796dd010a793105a87f5ff3a5fae7a2ed997345e4d1cbcd59a3f92bb45853	ELSA-2024-4911	ol7_x86_64_optional_latest
	freeradius-unixODBC-3.0.13-15.el7.x86_64.rpm	bef65cfa10daf38738560a2fbd0b251b2e2c23d5fd80c7c2a271aadd93820774	ELSA-2024-4911	ol7_x86_64_optional_beta
	freeradius-unixODBC-3.0.13-15.el7.x86_64.rpm	bef65cfa10daf38738560a2fbd0b251b2e2c23d5fd80c7c2a271aadd93820774	ELSA-2024-4911	ol7_x86_64_optional_latest
	freeradius-utils-3.0.13-15.el7.x86_64.rpm	cd0a551e9e38d233dec01523d3b46e9bde542ec956c7bb38eca1c79e6f054725	ELSA-2024-4911	ol7_x86_64_optional_beta
	freeradius-utils-3.0.13-15.el7.x86_64.rpm	cd0a551e9e38d233dec01523d3b46e9bde542ec956c7bb38eca1c79e6f054725	ELSA-2024-4911	ol7_x86_64_optional_latest

This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

Technical information

Oracle Linux Support

Connect

Contact Us

Global contacts
Oracle 1-800-633-0691