Openwall GNU/*/Linux - a small security-enhanced Linux distro for servers
[<prev] [next>] [thread-next>] [day] [month] [year] [list]
Date: Fri, 1 Oct 2010 10:29:50 -0600
From: Vincent Danen <>
Subject: CVE request: freeradius

Requesting CVE names for two flaws fix in freeradius 2.1.10:

DoS via certain DHCP requests

crash when processing requests queued for more than 30 seconds

Both issues only affect 2.1.x (1.1.x does not have the affected files or
functions).  It looks as though the first issue only affected 2.1.9; I'm
not yet sure if or how far the second issue may go back.

Could two CVE names be assigned to this issue please?


Vincent Danen / Red Hat Security Response Team 

Powered by blists - more mailing lists

Please check out the Open Source Software Security Wiki, which is counterpart to this mailing list.

Powered by Openwall GNU/*/Linux - Powered by OpenVZ