Showing 1 - 3 of 3

CVE-2019-11234

Status Candidate

Overview

FreeRADIUS before 3.0.19 does not prevent use of reflection for authentication spoofing, aka a "Dragonblood" issue, a similar issue to CVE-2019-9497.

Red Hat Security Advisory 2019-1142-01: Posted May 13, 2019; Authored by Red Hat | Site access.redhat.com; Red Hat Security Advisory 2019-1142-01 - FreeRADIUS is a high-performance and highly configurable free Remote Authentication Dial In User Service server, designed to allow centralized authentication and authorization for a network. Issues addressed include a bypass vulnerability.; tags | advisory, remote, bypass; systems | linux, redhat; advisories | CVE-2019-11234, CVE-2019-11235; SHA-256 | 3df38db5c6db7737af00a15c6487b8e47f6f4eb560ff5cfedc7411b9340cb9bd; Download | Favorite | View

Red Hat Security Advisory 2019-1131-01: Posted May 9, 2019; Authored by Red Hat | Site access.redhat.com; Red Hat Security Advisory 2019-1131-01 - FreeRADIUS is a high-performance and highly configurable free Remote Authentication Dial In User Service server, designed to allow centralized authentication and authorization for a network. Issues addressed include a bypass vulnerability.; tags | advisory, remote, bypass; systems | linux, redhat; advisories | CVE-2019-11234, CVE-2019-11235; SHA-256 | db426515b50171432a0716ccb69ebc5b4d732cbc763f4cf985dc3c6d0c33429e; Download | Favorite | View

Ubuntu Security Notice USN-3954-1: Posted Apr 24, 2019; Authored by Ubuntu | Site security.ubuntu.com; Ubuntu Security Notice 3954-1 - It was discovered that FreeRADIUS incorrectly handled certain inputs. An attacker could possibly use this issue to bypass authentication.; tags | advisory; systems | linux, ubuntu; advisories | CVE-2019-11234; SHA-256 | 1eb13bc35a756c03e3145507d6d0d7a516996bc6cf6f7b5a26bd2720ffa03b66; Download | Favorite | View

Page 1 of 1 Back 1 Next