UbuntuUpdates.org

Package "libpam-radius-auth"

Name: libpam-radius-auth

Description:

The PAM RADIUS authentication module

Latest version: 1.3.17-0ubuntu4.1
Release: xenial (16.04)
Level: security
Repository: main

Links


Download "libpam-radius-auth"


Other versions of "libpam-radius-auth" in Xenial

Repository Area Version
base main 1.3.17-0ubuntu4
updates main 1.3.17-0ubuntu4.1

Changelog

Version: 1.3.17-0ubuntu4.1 2020-02-24 15:06:37 UTC

  libpam-radius-auth (1.3.17-0ubuntu4.1) xenial-security; urgency=medium

  * SECURITY UPDATE: DoS via stack overflow in password field
    - debian/patches/CVE-2015-9542-1.patch: use length, which has been
      limited in size in src/pam_radius_auth.c.
    - debian/patches/CVE-2015-9542-2.patch: clear out trailing part of the
      buffer in src/pam_radius_auth.c.
    - debian/patches/CVE-2015-9542-3.patch: copy password to buffer before
      rounding length in src/pam_radius_auth.c.
    - debian/rules: added new patches.
    - CVE-2015-9542

 -- Marc Deslauriers <email address hidden> Wed, 19 Feb 2020 07:53:50 -0500

CVE-2015-9542 buffer overflow in password field



About   -   Send Feedback to @ubuntu_updates