← Back to branch summary

~ubuntu-security/ubuntu-cve-tracker/master

« back to all changes in this revision

Viewing changes to retired/CVE-2017-10981

  • Committer: Steve Beattie
  • Date: 2019-02-19 06:18:27 UTC
  • Revision ID: sbeattie@ubuntu.com-20190219061827-oh57fzcfc1u9dlfk
The ubuntu-cve-tracker project has been converted to git.

Please use 'git clone https://git.launchpad.net/ubuntu-cve-tracker' to
get the converted tree.

Show diffs side-by-side

added added

removed removed

Lines of Context:
retired/CVE-2017-10981
1
 
PublicDateAtUSN: 2017-07-17
2
 
Candidate: CVE-2017-10981
3
 
PublicDate: 2017-07-17
4
 
References:
5
 
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10981
6
 
 http://freeradius.org/security/fuzzer-2017.html#FR-GV-204
7
 
 http://freeradius.org/security/fuzzer-2017.html
8
 
 https://usn.ubuntu.com/usn/usn-3369-1
9
 
Description:
10
 
 An FR-GV-204 issue in FreeRADIUS 2.x before 2.2.10 allows "DHCP - Memory
11
 
 leak in fr_dhcp_decode()" and a denial of service.
12
 
Ubuntu-Description:
13
 
Notes:
14
 
 sbeattie> affects v2.x only
15
 
Bugs:
16
 
Priority: medium
17
 
Discovered-by: Guido Vranken
18
 
Assigned-to: mdeslaur
19
 
 
20
 
Patches_freeradius:
21
 
 upstream: https://github.com/FreeRADIUS/freeradius-server/commit/812766e2150faa07b4c574e51393b014feaffe6c
22
 
upstream_freeradius: released (3.0.12+dfsg-3)
23
 
precise/esm_freeradius: DNE
24
 
trusty_freeradius: released (2.1.12+dfsg-1.2ubuntu8.2)
25
 
vivid/ubuntu-core_freeradius: DNE
26
 
xenial_freeradius: released (2.2.8+dfsg-0.1ubuntu0.1)
27
 
yakkety_freeradius: ignored (reached end-of-life)
28
 
zesty_freeradius: not-affected (v2.x only)
29
 
devel_freeradius: not-affected (3.0.12+dfsg-5ubuntu1)