Control: retitle -1 freeradius: VU#871675: Authentication bypass in EAP-PWD
(CVE-2019-11234 CVE-2019-11235)
Hi
There are two CVEs assigned for freeradius related to VU#871675.
Cf. https://bugzilla.redhat.com/show_bug.cgi?id=1695783 and
https://bugzilla.redhat.com/show_bug.cgi?id=1695748 for
Package: src:freeradius
Severity: important
Tags: security
3.0.19 has been released adressing some issues in EAP-PWD. The VU#
linked in the original advisory is not (yet?) accessible and I haven't
found a CVE for it.
Since FreeRADIUS is orphaned I'll look at doing an NMU when I find some
time,
2 matches
Mail list logo