Action not permitted
Modal body text goes here.
Modal Title
Modal Body
CVE-2006-1354 (GCVE-0-2006-1354)
Vulnerability from cvelistv5
Published
2006-03-22 02:00
Modified
2024-08-07 17:12
Severity ?
EPSS score ?
Summary
Unspecified vulnerability in FreeRADIUS 1.0.0 up to 1.1.0 allows remote attackers to bypass authentication or cause a denial of service (server crash) via "Insufficient input validation" in the EAP-MSCHAPv2 state machine module.
References
{ containers: { adp: [ { providerMetadata: { dateUpdated: "2024-08-07T17:12:20.892Z", orgId: "af854a3a-2127-422b-91ae-364da2661108", shortName: "CVE", }, references: [ { name: "GLSA-200604-03", tags: [ "vendor-advisory", "x_refsource_GENTOO", "x_transferred", ], url: "http://www.gentoo.org/security/en/glsa/glsa-200604-03.xml", }, { name: "20060404-01-U", tags: [ "vendor-advisory", "x_refsource_SGI", "x_transferred", ], url: "ftp://patches.sgi.com/support/free/security/advisories/20060404-01-U.asc", }, { name: "freeradius-eap-mschapv2-auth-bypass(25352)", tags: [ "vdb-entry", "x_refsource_XF", "x_transferred", ], url: "https://exchange.xforce.ibmcloud.com/vulnerabilities/25352", }, { name: "19300", tags: [ "third-party-advisory", "x_refsource_SECUNIA", "x_transferred", ], url: "http://secunia.com/advisories/19300", }, { name: "SUSE-SA:2006:019", tags: [ "vendor-advisory", "x_refsource_SUSE", "x_transferred", ], url: "http://lists.suse.de/archive/suse-security-announce/2006-Mar/0009.html", }, { name: "17171", tags: [ "vdb-entry", "x_refsource_BID", "x_transferred", ], url: "http://www.securityfocus.com/bid/17171", }, { name: "20461", tags: [ "third-party-advisory", "x_refsource_SECUNIA", "x_transferred", ], url: "http://secunia.com/advisories/20461", }, { name: "19405", tags: [ "third-party-advisory", "x_refsource_SECUNIA", "x_transferred", ], url: "http://secunia.com/advisories/19405", }, { name: "19811", tags: [ "third-party-advisory", "x_refsource_SECUNIA", "x_transferred", ], url: "http://secunia.com/advisories/19811", }, { name: "ADV-2006-1016", tags: [ "vdb-entry", "x_refsource_VUPEN", "x_transferred", ], url: "http://www.vupen.com/english/advisories/2006/1016", }, { name: "oval:org.mitre.oval:def:10156", tags: [ "vdb-entry", "signature", "x_refsource_OVAL", "x_transferred", ], url: "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10156", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "http://www.freeradius.org/security.html", }, { name: "DSA-1089", tags: [ "vendor-advisory", "x_refsource_DEBIAN", "x_transferred", ], url: "http://www.debian.org/security/2006/dsa-1089", }, { name: "1015795", tags: [ "vdb-entry", "x_refsource_SECTRACK", "x_transferred", ], url: "http://securitytracker.com/id?1015795", }, { name: "RHSA-2006:0271", tags: [ "vendor-advisory", "x_refsource_REDHAT", "x_transferred", ], url: "http://rhn.redhat.com/errata/RHSA-2006-0271.html", }, { name: "19527", tags: [ "third-party-advisory", "x_refsource_SECUNIA", "x_transferred", ], url: "http://secunia.com/advisories/19527", }, { name: "2006-0020", tags: [ "vendor-advisory", "x_refsource_TRUSTIX", "x_transferred", ], url: "http://www.trustix.org/errata/2006/0020", }, { name: "MDKSA-2006:060", tags: [ "vendor-advisory", "x_refsource_MANDRIVA", "x_transferred", ], url: "http://www.mandriva.com/security/advisories?name=MDKSA-2006:060", }, { name: "19518", tags: [ "third-party-advisory", "x_refsource_SECUNIA", "x_transferred", ], url: "http://secunia.com/advisories/19518", }, ], title: "CVE Program Container", }, ], cna: { affected: [ { product: "n/a", vendor: "n/a", versions: [ { status: "affected", version: "n/a", }, ], }, ], datePublic: "2006-03-21T00:00:00", descriptions: [ { lang: "en", value: "Unspecified vulnerability in FreeRADIUS 1.0.0 up to 1.1.0 allows remote attackers to bypass authentication or cause a denial of service (server crash) via \"Insufficient input validation\" in the EAP-MSCHAPv2 state machine module.", }, ], problemTypes: [ { descriptions: [ { description: "n/a", lang: "en", type: "text", }, ], }, ], providerMetadata: { dateUpdated: "2017-10-10T00:57:01", orgId: "8254265b-2729-46b6-b9e3-3dfca2d5bfca", shortName: "mitre", }, references: [ { name: "GLSA-200604-03", tags: [ "vendor-advisory", "x_refsource_GENTOO", ], url: "http://www.gentoo.org/security/en/glsa/glsa-200604-03.xml", }, { name: "20060404-01-U", tags: [ "vendor-advisory", "x_refsource_SGI", ], url: "ftp://patches.sgi.com/support/free/security/advisories/20060404-01-U.asc", }, { name: "freeradius-eap-mschapv2-auth-bypass(25352)", tags: [ "vdb-entry", "x_refsource_XF", ], url: "https://exchange.xforce.ibmcloud.com/vulnerabilities/25352", }, { name: "19300", tags: [ "third-party-advisory", "x_refsource_SECUNIA", ], url: "http://secunia.com/advisories/19300", }, { name: "SUSE-SA:2006:019", tags: [ "vendor-advisory", "x_refsource_SUSE", ], url: "http://lists.suse.de/archive/suse-security-announce/2006-Mar/0009.html", }, { name: "17171", tags: [ "vdb-entry", "x_refsource_BID", ], url: "http://www.securityfocus.com/bid/17171", }, { name: "20461", tags: [ "third-party-advisory", "x_refsource_SECUNIA", ], url: "http://secunia.com/advisories/20461", }, { name: "19405", tags: [ "third-party-advisory", "x_refsource_SECUNIA", ], url: "http://secunia.com/advisories/19405", }, { name: "19811", tags: [ "third-party-advisory", "x_refsource_SECUNIA", ], url: "http://secunia.com/advisories/19811", }, { name: "ADV-2006-1016", tags: [ "vdb-entry", "x_refsource_VUPEN", ], url: "http://www.vupen.com/english/advisories/2006/1016", }, { name: "oval:org.mitre.oval:def:10156", tags: [ "vdb-entry", "signature", "x_refsource_OVAL", ], url: "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10156", }, { tags: [ "x_refsource_CONFIRM", ], url: "http://www.freeradius.org/security.html", }, { name: "DSA-1089", tags: [ "vendor-advisory", "x_refsource_DEBIAN", ], url: "http://www.debian.org/security/2006/dsa-1089", }, { name: "1015795", tags: [ "vdb-entry", "x_refsource_SECTRACK", ], url: "http://securitytracker.com/id?1015795", }, { name: "RHSA-2006:0271", tags: [ "vendor-advisory", "x_refsource_REDHAT", ], url: "http://rhn.redhat.com/errata/RHSA-2006-0271.html", }, { name: "19527", tags: [ "third-party-advisory", "x_refsource_SECUNIA", ], url: "http://secunia.com/advisories/19527", }, { name: "2006-0020", tags: [ "vendor-advisory", "x_refsource_TRUSTIX", ], url: "http://www.trustix.org/errata/2006/0020", }, { name: "MDKSA-2006:060", tags: [ "vendor-advisory", "x_refsource_MANDRIVA", ], url: "http://www.mandriva.com/security/advisories?name=MDKSA-2006:060", }, { name: "19518", tags: [ "third-party-advisory", "x_refsource_SECUNIA", ], url: "http://secunia.com/advisories/19518", }, ], x_legacyV4Record: { CVE_data_meta: { ASSIGNER: "cve@mitre.org", ID: "CVE-2006-1354", STATE: "PUBLIC", }, affects: { vendor: { vendor_data: [ { product: { product_data: [ { product_name: "n/a", version: { version_data: [ { version_value: "n/a", }, ], }, }, ], }, vendor_name: "n/a", }, ], }, }, data_format: "MITRE", data_type: "CVE", data_version: "4.0", description: { description_data: [ { lang: "eng", value: "Unspecified vulnerability in FreeRADIUS 1.0.0 up to 1.1.0 allows remote attackers to bypass authentication or cause a denial of service (server crash) via \"Insufficient input validation\" in the EAP-MSCHAPv2 state machine module.", }, ], }, problemtype: { problemtype_data: [ { description: [ { lang: "eng", value: "n/a", }, ], }, ], }, references: { reference_data: [ { name: "GLSA-200604-03", refsource: "GENTOO", url: "http://www.gentoo.org/security/en/glsa/glsa-200604-03.xml", }, { name: "20060404-01-U", refsource: "SGI", url: "ftp://patches.sgi.com/support/free/security/advisories/20060404-01-U.asc", }, { name: "freeradius-eap-mschapv2-auth-bypass(25352)", refsource: "XF", url: "https://exchange.xforce.ibmcloud.com/vulnerabilities/25352", }, { name: "19300", refsource: "SECUNIA", url: "http://secunia.com/advisories/19300", }, { name: "SUSE-SA:2006:019", refsource: "SUSE", url: "http://lists.suse.de/archive/suse-security-announce/2006-Mar/0009.html", }, { name: "17171", refsource: "BID", url: "http://www.securityfocus.com/bid/17171", }, { name: "20461", refsource: "SECUNIA", url: "http://secunia.com/advisories/20461", }, { name: "19405", refsource: "SECUNIA", url: "http://secunia.com/advisories/19405", }, { name: "19811", refsource: "SECUNIA", url: "http://secunia.com/advisories/19811", }, { name: "ADV-2006-1016", refsource: "VUPEN", url: "http://www.vupen.com/english/advisories/2006/1016", }, { name: "oval:org.mitre.oval:def:10156", refsource: "OVAL", url: "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10156", }, { name: "http://www.freeradius.org/security.html", refsource: "CONFIRM", url: "http://www.freeradius.org/security.html", }, { name: "DSA-1089", refsource: "DEBIAN", url: "http://www.debian.org/security/2006/dsa-1089", }, { name: "1015795", refsource: "SECTRACK", url: "http://securitytracker.com/id?1015795", }, { name: "RHSA-2006:0271", refsource: "REDHAT", url: "http://rhn.redhat.com/errata/RHSA-2006-0271.html", }, { name: "19527", refsource: "SECUNIA", url: "http://secunia.com/advisories/19527", }, { name: "2006-0020", refsource: "TRUSTIX", url: "http://www.trustix.org/errata/2006/0020", }, { name: "MDKSA-2006:060", refsource: "MANDRIVA", url: "http://www.mandriva.com/security/advisories?name=MDKSA-2006:060", }, { name: "19518", refsource: "SECUNIA", url: "http://secunia.com/advisories/19518", }, ], }, }, }, }, cveMetadata: { assignerOrgId: "8254265b-2729-46b6-b9e3-3dfca2d5bfca", assignerShortName: "mitre", cveId: "CVE-2006-1354", datePublished: "2006-03-22T02:00:00", dateReserved: "2006-03-21T00:00:00", dateUpdated: "2024-08-07T17:12:20.892Z", state: "PUBLISHED", }, dataType: "CVE_RECORD", dataVersion: "5.1", "vulnerability-lookup:meta": { fkie_nvd: { configurations: "[{\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:freeradius:freeradius:1.0.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"49152208-4DBD-4AF7-BCB3-3D56650899F7\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:freeradius:freeradius:1.0.1:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"90AF846A-F239-4963-B260-7CB48334B8B4\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:freeradius:freeradius:1.0.2:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"E95ADE53-BFBE-4B06-A1BF-EF576D567554\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:freeradius:freeradius:1.0.3:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"3F03F8FE-80BA-41A3-85CE-FFB6A18E6DCE\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:freeradius:freeradius:1.0.4:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"4C48FE12-68CB-462D-B75E-204894325F5D\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:freeradius:freeradius:1.0.5:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"1321F1E7-4B14-4B16-91D0-AE9E9951D12A\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:freeradius:freeradius:1.1.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"313EFEC5-1580-4ACE-BB9C-84E3714F2C37\"}]}]}]", descriptions: "[{\"lang\": \"en\", \"value\": \"Unspecified vulnerability in FreeRADIUS 1.0.0 up to 1.1.0 allows remote attackers to bypass authentication or cause a denial of service (server crash) via \\\"Insufficient input validation\\\" in the EAP-MSCHAPv2 state machine module.\"}]", id: "CVE-2006-1354", lastModified: "2024-11-21T00:08:39.370", metrics: "{\"cvssMetricV2\": [{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"cvssData\": {\"version\": \"2.0\", \"vectorString\": \"AV:N/AC:L/Au:N/C:P/I:P/A:P\", \"baseScore\": 7.5, \"accessVector\": \"NETWORK\", \"accessComplexity\": \"LOW\", \"authentication\": \"NONE\", \"confidentialityImpact\": \"PARTIAL\", \"integrityImpact\": \"PARTIAL\", \"availabilityImpact\": \"PARTIAL\"}, \"baseSeverity\": \"HIGH\", \"exploitabilityScore\": 10.0, \"impactScore\": 6.4, \"acInsufInfo\": false, \"obtainAllPrivilege\": false, \"obtainUserPrivilege\": false, \"obtainOtherPrivilege\": true, \"userInteractionRequired\": false}]}", published: "2006-03-22T02:02:00.000", references: "[{\"url\": \"ftp://patches.sgi.com/support/free/security/advisories/20060404-01-U.asc\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://lists.suse.de/archive/suse-security-announce/2006-Mar/0009.html\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://rhn.redhat.com/errata/RHSA-2006-0271.html\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://secunia.com/advisories/19300\", \"source\": \"cve@mitre.org\", \"tags\": [\"Patch\", \"Vendor Advisory\"]}, {\"url\": \"http://secunia.com/advisories/19405\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://secunia.com/advisories/19518\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://secunia.com/advisories/19527\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://secunia.com/advisories/19811\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://secunia.com/advisories/20461\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://securitytracker.com/id?1015795\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://www.debian.org/security/2006/dsa-1089\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://www.freeradius.org/security.html\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://www.gentoo.org/security/en/glsa/glsa-200604-03.xml\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://www.mandriva.com/security/advisories?name=MDKSA-2006:060\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://www.securityfocus.com/bid/17171\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://www.trustix.org/errata/2006/0020\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://www.vupen.com/english/advisories/2006/1016\", \"source\": \"cve@mitre.org\"}, {\"url\": \"https://exchange.xforce.ibmcloud.com/vulnerabilities/25352\", \"source\": \"cve@mitre.org\"}, {\"url\": \"https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10156\", \"source\": \"cve@mitre.org\"}, {\"url\": \"ftp://patches.sgi.com/support/free/security/advisories/20060404-01-U.asc\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://lists.suse.de/archive/suse-security-announce/2006-Mar/0009.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://rhn.redhat.com/errata/RHSA-2006-0271.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://secunia.com/advisories/19300\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Patch\", \"Vendor Advisory\"]}, {\"url\": \"http://secunia.com/advisories/19405\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://secunia.com/advisories/19518\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://secunia.com/advisories/19527\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://secunia.com/advisories/19811\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://secunia.com/advisories/20461\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://securitytracker.com/id?1015795\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://www.debian.org/security/2006/dsa-1089\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://www.freeradius.org/security.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://www.gentoo.org/security/en/glsa/glsa-200604-03.xml\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://www.mandriva.com/security/advisories?name=MDKSA-2006:060\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://www.securityfocus.com/bid/17171\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://www.trustix.org/errata/2006/0020\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://www.vupen.com/english/advisories/2006/1016\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://exchange.xforce.ibmcloud.com/vulnerabilities/25352\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10156\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}]", sourceIdentifier: "cve@mitre.org", vulnStatus: "Modified", weaknesses: "[{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"description\": [{\"lang\": \"en\", \"value\": \"NVD-CWE-Other\"}]}]", }, nvd: "{\"cve\":{\"id\":\"CVE-2006-1354\",\"sourceIdentifier\":\"cve@mitre.org\",\"published\":\"2006-03-22T02:02:00.000\",\"lastModified\":\"2025-04-03T01:03:51.193\",\"vulnStatus\":\"Deferred\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"Unspecified vulnerability in FreeRADIUS 1.0.0 up to 1.1.0 allows remote attackers to bypass authentication or cause a denial of service (server crash) via \\\"Insufficient input validation\\\" in the EAP-MSCHAPv2 state machine module.\"}],\"metrics\":{\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:N/AC:L/Au:N/C:P/I:P/A:P\",\"baseScore\":7.5,\"accessVector\":\"NETWORK\",\"accessComplexity\":\"LOW\",\"authentication\":\"NONE\",\"confidentialityImpact\":\"PARTIAL\",\"integrityImpact\":\"PARTIAL\",\"availabilityImpact\":\"PARTIAL\"},\"baseSeverity\":\"HIGH\",\"exploitabilityScore\":10.0,\"impactScore\":6.4,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":true,\"userInteractionRequired\":false}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"NVD-CWE-Other\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:freeradius:freeradius:1.0.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"49152208-4DBD-4AF7-BCB3-3D56650899F7\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:freeradius:freeradius:1.0.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"90AF846A-F239-4963-B260-7CB48334B8B4\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:freeradius:freeradius:1.0.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E95ADE53-BFBE-4B06-A1BF-EF576D567554\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:freeradius:freeradius:1.0.3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"3F03F8FE-80BA-41A3-85CE-FFB6A18E6DCE\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:freeradius:freeradius:1.0.4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"4C48FE12-68CB-462D-B75E-204894325F5D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:freeradius:freeradius:1.0.5:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"1321F1E7-4B14-4B16-91D0-AE9E9951D12A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:freeradius:freeradius:1.1.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"313EFEC5-1580-4ACE-BB9C-84E3714F2C37\"}]}]}],\"references\":[{\"url\":\"ftp://patches.sgi.com/support/free/security/advisories/20060404-01-U.asc\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://lists.suse.de/archive/suse-security-announce/2006-Mar/0009.html\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://rhn.redhat.com/errata/RHSA-2006-0271.html\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://secunia.com/advisories/19300\",\"source\":\"cve@mitre.org\",\"tags\":[\"Patch\",\"Vendor Advisory\"]},{\"url\":\"http://secunia.com/advisories/19405\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://secunia.com/advisories/19518\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://secunia.com/advisories/19527\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://secunia.com/advisories/19811\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://secunia.com/advisories/20461\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://securitytracker.com/id?1015795\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.debian.org/security/2006/dsa-1089\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.freeradius.org/security.html\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.gentoo.org/security/en/glsa/glsa-200604-03.xml\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.mandriva.com/security/advisories?name=MDKSA-2006:060\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.securityfocus.com/bid/17171\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.trustix.org/errata/2006/0020\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.vupen.com/english/advisories/2006/1016\",\"source\":\"cve@mitre.org\"},{\"url\":\"https://exchange.xforce.ibmcloud.com/vulnerabilities/25352\",\"source\":\"cve@mitre.org\"},{\"url\":\"https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10156\",\"source\":\"cve@mitre.org\"},{\"url\":\"ftp://patches.sgi.com/support/free/security/advisories/20060404-01-U.asc\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://lists.suse.de/archive/suse-security-announce/2006-Mar/0009.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://rhn.redhat.com/errata/RHSA-2006-0271.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://secunia.com/advisories/19300\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Patch\",\"Vendor Advisory\"]},{\"url\":\"http://secunia.com/advisories/19405\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://secunia.com/advisories/19518\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://secunia.com/advisories/19527\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://secunia.com/advisories/19811\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://secunia.com/advisories/20461\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://securitytracker.com/id?1015795\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.debian.org/security/2006/dsa-1089\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.freeradius.org/security.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.gentoo.org/security/en/glsa/glsa-200604-03.xml\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.mandriva.com/security/advisories?name=MDKSA-2006:060\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.securityfocus.com/bid/17171\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.trustix.org/errata/2006/0020\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.vupen.com/english/advisories/2006/1016\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://exchange.xforce.ibmcloud.com/vulnerabilities/25352\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10156\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"}]}}", }, }
RHSA-2006:0271
Vulnerability from csaf_redhat
Published
2006-04-04 08:51
Modified
2024-11-22 00:11
Summary
Red Hat Security Advisory: freeradius security update
Notes
Topic
Updated freeradius packages that fix an authentication weakness are now
available.
This update has been rated as having important security impact by the Red
Hat Security Response Team.
Details
FreeRADIUS is a high-performance and highly configurable free RADIUS server
designed to allow centralized authentication and authorization for a network.
A bug was found in the way FreeRADIUS authenticates users via the MSCHAP V2
protocol. It is possible for a remote attacker to authenticate as a victim
by sending a malformed MSCHAP V2 login request to the FreeRADIUS server.
(CVE-2006-1354)
Please note that FreeRADIUS installations not using the MSCHAP V2 protocol
for authentication are not vulnerable to this issue.
A bug was also found in the way FreeRADIUS logs SQL errors from the
sql_unixodbc module. It may be possible for an attacker to cause FreeRADIUS
to crash or execute arbitrary code if they are able to manipulate the SQL
database FreeRADIUS is connecting to. (CVE-2005-4744)
Users of FreeRADIUS should update to these erratum packages, which contain
backported patches and are not vulnerable to these issues.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{ document: { aggregate_severity: { namespace: "https://access.redhat.com/security/updates/classification/", text: "Important", }, category: "csaf_security_advisory", csaf_version: "2.0", distribution: { text: "Copyright © Red Hat, Inc. All rights reserved.", tlp: { label: "WHITE", url: "https://www.first.org/tlp/", }, }, lang: "en", notes: [ { category: "summary", text: "Updated freeradius packages that fix an authentication weakness are now\navailable.\n\nThis update has been rated as having important security impact by the Red\nHat Security Response Team.", title: "Topic", }, { category: "general", text: "FreeRADIUS is a high-performance and highly configurable free RADIUS server\ndesigned to allow centralized authentication and authorization for a network. \n\nA bug was found in the way FreeRADIUS authenticates users via the MSCHAP V2\nprotocol. It is possible for a remote attacker to authenticate as a victim\nby sending a malformed MSCHAP V2 login request to the FreeRADIUS server.\n(CVE-2006-1354)\n\nPlease note that FreeRADIUS installations not using the MSCHAP V2 protocol\nfor authentication are not vulnerable to this issue.\n\nA bug was also found in the way FreeRADIUS logs SQL errors from the\nsql_unixodbc module. It may be possible for an attacker to cause FreeRADIUS\nto crash or execute arbitrary code if they are able to manipulate the SQL\ndatabase FreeRADIUS is connecting to. (CVE-2005-4744)\n\nUsers of FreeRADIUS should update to these erratum packages, which contain\nbackported patches and are not vulnerable to these issues.", title: "Details", }, { category: "legal_disclaimer", text: "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", title: "Terms of Use", }, ], publisher: { category: "vendor", contact_details: "https://access.redhat.com/security/team/contact/", issuing_authority: "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", name: "Red Hat Product Security", namespace: "https://www.redhat.com", }, references: [ { category: "self", summary: "https://access.redhat.com/errata/RHSA-2006:0271", url: "https://access.redhat.com/errata/RHSA-2006:0271", }, { category: "external", summary: "https://access.redhat.com/security/updates/classification/#important", url: "https://access.redhat.com/security/updates/classification/#important", }, { category: "external", summary: "167676", url: "https://bugzilla.redhat.com/show_bug.cgi?id=167676", }, { category: "external", summary: "186083", url: "https://bugzilla.redhat.com/show_bug.cgi?id=186083", }, { category: "self", summary: "Canonical URL", url: "https://security.access.redhat.com/data/csaf/v2/advisories/2006/rhsa-2006_0271.json", }, ], title: "Red Hat Security Advisory: freeradius security update", tracking: { current_release_date: "2024-11-22T00:11:16+00:00", generator: { date: "2024-11-22T00:11:16+00:00", engine: { name: "Red Hat SDEngine", version: "4.2.1", }, }, id: "RHSA-2006:0271", initial_release_date: "2006-04-04T08:51:00+00:00", revision_history: [ { date: "2006-04-04T08:51:00+00:00", number: "1", summary: "Initial version", }, { date: "2006-04-04T00:00:00+00:00", number: "2", summary: "Last updated version", }, { date: "2024-11-22T00:11:16+00:00", number: "3", summary: "Last generated version", }, ], status: "final", version: "3", }, }, product_tree: { branches: [ { branches: [ { branches: [ { category: "product_name", name: "Red Hat Enterprise Linux AS version 3", product: { name: "Red Hat Enterprise Linux AS version 3", product_id: "3AS", product_identification_helper: { cpe: "cpe:/o:redhat:enterprise_linux:3::as", }, }, }, { category: "product_name", name: "Red Hat Enterprise Linux ES version 3", product: { name: "Red Hat Enterprise Linux ES version 3", product_id: "3ES", product_identification_helper: { cpe: "cpe:/o:redhat:enterprise_linux:3::es", }, }, }, { category: "product_name", name: "Red Hat Enterprise Linux AS version 4", product: { name: "Red Hat Enterprise Linux AS version 4", product_id: "4AS", product_identification_helper: { cpe: "cpe:/o:redhat:enterprise_linux:4::as", }, }, }, { category: "product_name", name: "Red Hat Enterprise Linux ES version 4", product: { name: "Red Hat Enterprise Linux ES version 4", product_id: "4ES", product_identification_helper: { cpe: "cpe:/o:redhat:enterprise_linux:4::es", }, }, }, ], category: "product_family", name: "Red Hat Enterprise Linux", }, { branches: [ { category: "product_version", name: "freeradius-0:1.0.1-2.RHEL3.2.ia64", product: { name: "freeradius-0:1.0.1-2.RHEL3.2.ia64", product_id: "freeradius-0:1.0.1-2.RHEL3.2.ia64", product_identification_helper: { purl: "pkg:rpm/redhat/freeradius@1.0.1-2.RHEL3.2?arch=ia64", }, }, }, { category: "product_version", name: "freeradius-debuginfo-0:1.0.1-2.RHEL3.2.ia64", product: { name: "freeradius-debuginfo-0:1.0.1-2.RHEL3.2.ia64", product_id: "freeradius-debuginfo-0:1.0.1-2.RHEL3.2.ia64", product_identification_helper: { purl: "pkg:rpm/redhat/freeradius-debuginfo@1.0.1-2.RHEL3.2?arch=ia64", }, }, }, { category: "product_version", name: "freeradius-postgresql-0:1.0.1-3.RHEL4.3.ia64", product: { name: "freeradius-postgresql-0:1.0.1-3.RHEL4.3.ia64", product_id: "freeradius-postgresql-0:1.0.1-3.RHEL4.3.ia64", product_identification_helper: { purl: "pkg:rpm/redhat/freeradius-postgresql@1.0.1-3.RHEL4.3?arch=ia64", }, }, }, { category: "product_version", name: "freeradius-unixODBC-0:1.0.1-3.RHEL4.3.ia64", product: { name: "freeradius-unixODBC-0:1.0.1-3.RHEL4.3.ia64", product_id: "freeradius-unixODBC-0:1.0.1-3.RHEL4.3.ia64", product_identification_helper: { purl: "pkg:rpm/redhat/freeradius-unixODBC@1.0.1-3.RHEL4.3?arch=ia64", }, }, }, { category: "product_version", name: "freeradius-0:1.0.1-3.RHEL4.3.ia64", product: { name: "freeradius-0:1.0.1-3.RHEL4.3.ia64", product_id: "freeradius-0:1.0.1-3.RHEL4.3.ia64", product_identification_helper: { purl: "pkg:rpm/redhat/freeradius@1.0.1-3.RHEL4.3?arch=ia64", }, }, }, { category: "product_version", name: "freeradius-mysql-0:1.0.1-3.RHEL4.3.ia64", product: { name: "freeradius-mysql-0:1.0.1-3.RHEL4.3.ia64", product_id: "freeradius-mysql-0:1.0.1-3.RHEL4.3.ia64", product_identification_helper: { purl: "pkg:rpm/redhat/freeradius-mysql@1.0.1-3.RHEL4.3?arch=ia64", }, }, }, { category: "product_version", name: "freeradius-debuginfo-0:1.0.1-3.RHEL4.3.ia64", product: { name: "freeradius-debuginfo-0:1.0.1-3.RHEL4.3.ia64", product_id: "freeradius-debuginfo-0:1.0.1-3.RHEL4.3.ia64", product_identification_helper: { purl: "pkg:rpm/redhat/freeradius-debuginfo@1.0.1-3.RHEL4.3?arch=ia64", }, }, }, ], category: "architecture", name: "ia64", }, { branches: [ { category: "product_version", name: "freeradius-0:1.0.1-2.RHEL3.2.src", product: { name: "freeradius-0:1.0.1-2.RHEL3.2.src", product_id: "freeradius-0:1.0.1-2.RHEL3.2.src", product_identification_helper: { purl: "pkg:rpm/redhat/freeradius@1.0.1-2.RHEL3.2?arch=src", }, }, }, { category: "product_version", name: "freeradius-0:1.0.1-3.RHEL4.3.src", product: { name: "freeradius-0:1.0.1-3.RHEL4.3.src", product_id: "freeradius-0:1.0.1-3.RHEL4.3.src", product_identification_helper: { purl: "pkg:rpm/redhat/freeradius@1.0.1-3.RHEL4.3?arch=src", }, }, }, ], category: "architecture", name: "src", }, { branches: [ { category: "product_version", name: "freeradius-0:1.0.1-2.RHEL3.2.x86_64", product: { name: "freeradius-0:1.0.1-2.RHEL3.2.x86_64", product_id: "freeradius-0:1.0.1-2.RHEL3.2.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/freeradius@1.0.1-2.RHEL3.2?arch=x86_64", }, }, }, { category: "product_version", name: "freeradius-debuginfo-0:1.0.1-2.RHEL3.2.x86_64", product: { name: "freeradius-debuginfo-0:1.0.1-2.RHEL3.2.x86_64", product_id: "freeradius-debuginfo-0:1.0.1-2.RHEL3.2.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/freeradius-debuginfo@1.0.1-2.RHEL3.2?arch=x86_64", }, }, }, { category: "product_version", name: "freeradius-postgresql-0:1.0.1-3.RHEL4.3.x86_64", product: { name: "freeradius-postgresql-0:1.0.1-3.RHEL4.3.x86_64", product_id: "freeradius-postgresql-0:1.0.1-3.RHEL4.3.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/freeradius-postgresql@1.0.1-3.RHEL4.3?arch=x86_64", }, }, }, { category: "product_version", name: "freeradius-unixODBC-0:1.0.1-3.RHEL4.3.x86_64", product: { name: "freeradius-unixODBC-0:1.0.1-3.RHEL4.3.x86_64", product_id: "freeradius-unixODBC-0:1.0.1-3.RHEL4.3.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/freeradius-unixODBC@1.0.1-3.RHEL4.3?arch=x86_64", }, }, }, { category: "product_version", name: "freeradius-0:1.0.1-3.RHEL4.3.x86_64", product: { name: "freeradius-0:1.0.1-3.RHEL4.3.x86_64", product_id: "freeradius-0:1.0.1-3.RHEL4.3.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/freeradius@1.0.1-3.RHEL4.3?arch=x86_64", }, }, }, { category: "product_version", name: "freeradius-mysql-0:1.0.1-3.RHEL4.3.x86_64", product: { name: "freeradius-mysql-0:1.0.1-3.RHEL4.3.x86_64", product_id: "freeradius-mysql-0:1.0.1-3.RHEL4.3.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/freeradius-mysql@1.0.1-3.RHEL4.3?arch=x86_64", }, }, }, { category: "product_version", name: "freeradius-debuginfo-0:1.0.1-3.RHEL4.3.x86_64", product: { name: "freeradius-debuginfo-0:1.0.1-3.RHEL4.3.x86_64", product_id: "freeradius-debuginfo-0:1.0.1-3.RHEL4.3.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/freeradius-debuginfo@1.0.1-3.RHEL4.3?arch=x86_64", }, }, }, ], category: "architecture", name: "x86_64", }, { branches: [ { category: "product_version", name: "freeradius-0:1.0.1-2.RHEL3.2.i386", product: { name: "freeradius-0:1.0.1-2.RHEL3.2.i386", product_id: "freeradius-0:1.0.1-2.RHEL3.2.i386", product_identification_helper: { purl: "pkg:rpm/redhat/freeradius@1.0.1-2.RHEL3.2?arch=i386", }, }, }, { category: "product_version", name: "freeradius-debuginfo-0:1.0.1-2.RHEL3.2.i386", product: { name: "freeradius-debuginfo-0:1.0.1-2.RHEL3.2.i386", product_id: "freeradius-debuginfo-0:1.0.1-2.RHEL3.2.i386", product_identification_helper: { purl: "pkg:rpm/redhat/freeradius-debuginfo@1.0.1-2.RHEL3.2?arch=i386", }, }, }, { category: "product_version", name: "freeradius-postgresql-0:1.0.1-3.RHEL4.3.i386", product: { name: "freeradius-postgresql-0:1.0.1-3.RHEL4.3.i386", product_id: "freeradius-postgresql-0:1.0.1-3.RHEL4.3.i386", product_identification_helper: { purl: "pkg:rpm/redhat/freeradius-postgresql@1.0.1-3.RHEL4.3?arch=i386", }, }, }, { category: "product_version", name: "freeradius-unixODBC-0:1.0.1-3.RHEL4.3.i386", product: { name: "freeradius-unixODBC-0:1.0.1-3.RHEL4.3.i386", product_id: "freeradius-unixODBC-0:1.0.1-3.RHEL4.3.i386", product_identification_helper: { purl: "pkg:rpm/redhat/freeradius-unixODBC@1.0.1-3.RHEL4.3?arch=i386", }, }, }, { category: "product_version", name: "freeradius-0:1.0.1-3.RHEL4.3.i386", product: { name: "freeradius-0:1.0.1-3.RHEL4.3.i386", product_id: "freeradius-0:1.0.1-3.RHEL4.3.i386", product_identification_helper: { purl: "pkg:rpm/redhat/freeradius@1.0.1-3.RHEL4.3?arch=i386", }, }, }, { category: "product_version", name: "freeradius-mysql-0:1.0.1-3.RHEL4.3.i386", product: { name: "freeradius-mysql-0:1.0.1-3.RHEL4.3.i386", product_id: "freeradius-mysql-0:1.0.1-3.RHEL4.3.i386", product_identification_helper: { purl: "pkg:rpm/redhat/freeradius-mysql@1.0.1-3.RHEL4.3?arch=i386", }, }, }, { category: "product_version", name: "freeradius-debuginfo-0:1.0.1-3.RHEL4.3.i386", product: { name: "freeradius-debuginfo-0:1.0.1-3.RHEL4.3.i386", product_id: "freeradius-debuginfo-0:1.0.1-3.RHEL4.3.i386", product_identification_helper: { purl: "pkg:rpm/redhat/freeradius-debuginfo@1.0.1-3.RHEL4.3?arch=i386", }, }, }, ], category: "architecture", name: "i386", }, { branches: [ { category: "product_version", name: "freeradius-0:1.0.1-2.RHEL3.2.ppc", product: { name: "freeradius-0:1.0.1-2.RHEL3.2.ppc", product_id: "freeradius-0:1.0.1-2.RHEL3.2.ppc", product_identification_helper: { purl: "pkg:rpm/redhat/freeradius@1.0.1-2.RHEL3.2?arch=ppc", }, }, }, { category: "product_version", name: "freeradius-debuginfo-0:1.0.1-2.RHEL3.2.ppc", product: { name: "freeradius-debuginfo-0:1.0.1-2.RHEL3.2.ppc", product_id: "freeradius-debuginfo-0:1.0.1-2.RHEL3.2.ppc", product_identification_helper: { purl: "pkg:rpm/redhat/freeradius-debuginfo@1.0.1-2.RHEL3.2?arch=ppc", }, }, }, { category: "product_version", name: "freeradius-postgresql-0:1.0.1-3.RHEL4.3.ppc", product: { name: "freeradius-postgresql-0:1.0.1-3.RHEL4.3.ppc", product_id: "freeradius-postgresql-0:1.0.1-3.RHEL4.3.ppc", product_identification_helper: { purl: "pkg:rpm/redhat/freeradius-postgresql@1.0.1-3.RHEL4.3?arch=ppc", }, }, }, { category: "product_version", name: "freeradius-unixODBC-0:1.0.1-3.RHEL4.3.ppc", product: { name: "freeradius-unixODBC-0:1.0.1-3.RHEL4.3.ppc", product_id: "freeradius-unixODBC-0:1.0.1-3.RHEL4.3.ppc", product_identification_helper: { purl: "pkg:rpm/redhat/freeradius-unixODBC@1.0.1-3.RHEL4.3?arch=ppc", }, }, }, { category: "product_version", name: "freeradius-0:1.0.1-3.RHEL4.3.ppc", product: { name: "freeradius-0:1.0.1-3.RHEL4.3.ppc", product_id: "freeradius-0:1.0.1-3.RHEL4.3.ppc", product_identification_helper: { purl: "pkg:rpm/redhat/freeradius@1.0.1-3.RHEL4.3?arch=ppc", }, }, }, { category: "product_version", name: "freeradius-mysql-0:1.0.1-3.RHEL4.3.ppc", product: { name: "freeradius-mysql-0:1.0.1-3.RHEL4.3.ppc", product_id: "freeradius-mysql-0:1.0.1-3.RHEL4.3.ppc", product_identification_helper: { purl: "pkg:rpm/redhat/freeradius-mysql@1.0.1-3.RHEL4.3?arch=ppc", }, }, }, { category: "product_version", name: "freeradius-debuginfo-0:1.0.1-3.RHEL4.3.ppc", product: { name: "freeradius-debuginfo-0:1.0.1-3.RHEL4.3.ppc", product_id: "freeradius-debuginfo-0:1.0.1-3.RHEL4.3.ppc", product_identification_helper: { purl: "pkg:rpm/redhat/freeradius-debuginfo@1.0.1-3.RHEL4.3?arch=ppc", }, }, }, ], category: "architecture", name: "ppc", }, { branches: [ { category: "product_version", name: "freeradius-0:1.0.1-2.RHEL3.2.s390x", product: { name: "freeradius-0:1.0.1-2.RHEL3.2.s390x", product_id: "freeradius-0:1.0.1-2.RHEL3.2.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/freeradius@1.0.1-2.RHEL3.2?arch=s390x", }, }, }, { category: "product_version", name: "freeradius-debuginfo-0:1.0.1-2.RHEL3.2.s390x", product: { name: "freeradius-debuginfo-0:1.0.1-2.RHEL3.2.s390x", product_id: "freeradius-debuginfo-0:1.0.1-2.RHEL3.2.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/freeradius-debuginfo@1.0.1-2.RHEL3.2?arch=s390x", }, }, }, { category: "product_version", name: "freeradius-postgresql-0:1.0.1-3.RHEL4.3.s390x", product: { name: "freeradius-postgresql-0:1.0.1-3.RHEL4.3.s390x", product_id: "freeradius-postgresql-0:1.0.1-3.RHEL4.3.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/freeradius-postgresql@1.0.1-3.RHEL4.3?arch=s390x", }, }, }, { category: "product_version", name: "freeradius-unixODBC-0:1.0.1-3.RHEL4.3.s390x", product: { name: "freeradius-unixODBC-0:1.0.1-3.RHEL4.3.s390x", product_id: "freeradius-unixODBC-0:1.0.1-3.RHEL4.3.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/freeradius-unixODBC@1.0.1-3.RHEL4.3?arch=s390x", }, }, }, { category: "product_version", name: "freeradius-0:1.0.1-3.RHEL4.3.s390x", product: { name: "freeradius-0:1.0.1-3.RHEL4.3.s390x", product_id: "freeradius-0:1.0.1-3.RHEL4.3.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/freeradius@1.0.1-3.RHEL4.3?arch=s390x", }, }, }, { category: "product_version", name: "freeradius-mysql-0:1.0.1-3.RHEL4.3.s390x", product: { name: "freeradius-mysql-0:1.0.1-3.RHEL4.3.s390x", product_id: "freeradius-mysql-0:1.0.1-3.RHEL4.3.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/freeradius-mysql@1.0.1-3.RHEL4.3?arch=s390x", }, }, }, { category: "product_version", name: "freeradius-debuginfo-0:1.0.1-3.RHEL4.3.s390x", product: { name: "freeradius-debuginfo-0:1.0.1-3.RHEL4.3.s390x", product_id: "freeradius-debuginfo-0:1.0.1-3.RHEL4.3.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/freeradius-debuginfo@1.0.1-3.RHEL4.3?arch=s390x", }, }, }, ], category: "architecture", name: "s390x", }, { branches: [ { category: "product_version", name: "freeradius-0:1.0.1-2.RHEL3.2.s390", product: { name: "freeradius-0:1.0.1-2.RHEL3.2.s390", product_id: "freeradius-0:1.0.1-2.RHEL3.2.s390", product_identification_helper: { purl: "pkg:rpm/redhat/freeradius@1.0.1-2.RHEL3.2?arch=s390", }, }, }, { category: "product_version", name: "freeradius-debuginfo-0:1.0.1-2.RHEL3.2.s390", product: { name: "freeradius-debuginfo-0:1.0.1-2.RHEL3.2.s390", product_id: "freeradius-debuginfo-0:1.0.1-2.RHEL3.2.s390", product_identification_helper: { purl: "pkg:rpm/redhat/freeradius-debuginfo@1.0.1-2.RHEL3.2?arch=s390", }, }, }, { category: "product_version", name: "freeradius-postgresql-0:1.0.1-3.RHEL4.3.s390", product: { name: "freeradius-postgresql-0:1.0.1-3.RHEL4.3.s390", product_id: "freeradius-postgresql-0:1.0.1-3.RHEL4.3.s390", product_identification_helper: { purl: "pkg:rpm/redhat/freeradius-postgresql@1.0.1-3.RHEL4.3?arch=s390", }, }, }, { category: "product_version", name: "freeradius-unixODBC-0:1.0.1-3.RHEL4.3.s390", product: { name: "freeradius-unixODBC-0:1.0.1-3.RHEL4.3.s390", product_id: "freeradius-unixODBC-0:1.0.1-3.RHEL4.3.s390", product_identification_helper: { purl: "pkg:rpm/redhat/freeradius-unixODBC@1.0.1-3.RHEL4.3?arch=s390", }, }, }, { category: "product_version", name: "freeradius-0:1.0.1-3.RHEL4.3.s390", product: { name: "freeradius-0:1.0.1-3.RHEL4.3.s390", product_id: "freeradius-0:1.0.1-3.RHEL4.3.s390", product_identification_helper: { purl: "pkg:rpm/redhat/freeradius@1.0.1-3.RHEL4.3?arch=s390", }, }, }, { category: "product_version", name: "freeradius-mysql-0:1.0.1-3.RHEL4.3.s390", product: { name: "freeradius-mysql-0:1.0.1-3.RHEL4.3.s390", product_id: "freeradius-mysql-0:1.0.1-3.RHEL4.3.s390", product_identification_helper: { purl: "pkg:rpm/redhat/freeradius-mysql@1.0.1-3.RHEL4.3?arch=s390", }, }, }, { category: "product_version", name: "freeradius-debuginfo-0:1.0.1-3.RHEL4.3.s390", product: { name: "freeradius-debuginfo-0:1.0.1-3.RHEL4.3.s390", product_id: "freeradius-debuginfo-0:1.0.1-3.RHEL4.3.s390", product_identification_helper: { purl: "pkg:rpm/redhat/freeradius-debuginfo@1.0.1-3.RHEL4.3?arch=s390", }, }, }, ], category: "architecture", name: "s390", }, ], category: "vendor", name: "Red Hat", }, ], relationships: [ { category: "default_component_of", full_product_name: { name: "freeradius-0:1.0.1-2.RHEL3.2.i386 as a component of Red Hat Enterprise Linux AS version 3", product_id: "3AS:freeradius-0:1.0.1-2.RHEL3.2.i386", }, product_reference: "freeradius-0:1.0.1-2.RHEL3.2.i386", relates_to_product_reference: "3AS", }, { category: "default_component_of", full_product_name: { name: "freeradius-0:1.0.1-2.RHEL3.2.ia64 as a component of Red Hat Enterprise Linux AS version 3", product_id: "3AS:freeradius-0:1.0.1-2.RHEL3.2.ia64", }, product_reference: "freeradius-0:1.0.1-2.RHEL3.2.ia64", relates_to_product_reference: "3AS", }, { category: "default_component_of", full_product_name: { name: "freeradius-0:1.0.1-2.RHEL3.2.ppc as a component of Red Hat Enterprise Linux AS version 3", product_id: "3AS:freeradius-0:1.0.1-2.RHEL3.2.ppc", }, product_reference: "freeradius-0:1.0.1-2.RHEL3.2.ppc", relates_to_product_reference: "3AS", }, { category: "default_component_of", full_product_name: { name: "freeradius-0:1.0.1-2.RHEL3.2.s390 as a component of Red Hat Enterprise Linux AS version 3", product_id: "3AS:freeradius-0:1.0.1-2.RHEL3.2.s390", }, product_reference: "freeradius-0:1.0.1-2.RHEL3.2.s390", relates_to_product_reference: "3AS", }, { category: "default_component_of", full_product_name: { name: "freeradius-0:1.0.1-2.RHEL3.2.s390x as a component of Red Hat Enterprise Linux AS version 3", product_id: "3AS:freeradius-0:1.0.1-2.RHEL3.2.s390x", }, product_reference: "freeradius-0:1.0.1-2.RHEL3.2.s390x", relates_to_product_reference: "3AS", }, { category: "default_component_of", full_product_name: { name: "freeradius-0:1.0.1-2.RHEL3.2.src as a component of Red Hat Enterprise Linux AS version 3", product_id: "3AS:freeradius-0:1.0.1-2.RHEL3.2.src", }, product_reference: "freeradius-0:1.0.1-2.RHEL3.2.src", relates_to_product_reference: "3AS", }, { category: "default_component_of", full_product_name: { name: "freeradius-0:1.0.1-2.RHEL3.2.x86_64 as a component of Red Hat Enterprise Linux AS version 3", product_id: "3AS:freeradius-0:1.0.1-2.RHEL3.2.x86_64", }, product_reference: "freeradius-0:1.0.1-2.RHEL3.2.x86_64", relates_to_product_reference: "3AS", }, { category: "default_component_of", full_product_name: { name: "freeradius-debuginfo-0:1.0.1-2.RHEL3.2.i386 as a component of Red Hat Enterprise Linux AS version 3", product_id: "3AS:freeradius-debuginfo-0:1.0.1-2.RHEL3.2.i386", }, product_reference: "freeradius-debuginfo-0:1.0.1-2.RHEL3.2.i386", relates_to_product_reference: "3AS", }, { category: "default_component_of", full_product_name: { name: "freeradius-debuginfo-0:1.0.1-2.RHEL3.2.ia64 as a component of Red Hat Enterprise Linux AS version 3", product_id: "3AS:freeradius-debuginfo-0:1.0.1-2.RHEL3.2.ia64", }, product_reference: "freeradius-debuginfo-0:1.0.1-2.RHEL3.2.ia64", relates_to_product_reference: "3AS", }, { category: "default_component_of", full_product_name: { name: "freeradius-debuginfo-0:1.0.1-2.RHEL3.2.ppc as a component of Red Hat Enterprise Linux AS version 3", product_id: "3AS:freeradius-debuginfo-0:1.0.1-2.RHEL3.2.ppc", }, product_reference: "freeradius-debuginfo-0:1.0.1-2.RHEL3.2.ppc", relates_to_product_reference: "3AS", }, { category: "default_component_of", full_product_name: { name: "freeradius-debuginfo-0:1.0.1-2.RHEL3.2.s390 as a component of Red Hat Enterprise Linux AS version 3", product_id: "3AS:freeradius-debuginfo-0:1.0.1-2.RHEL3.2.s390", }, product_reference: "freeradius-debuginfo-0:1.0.1-2.RHEL3.2.s390", relates_to_product_reference: "3AS", }, { category: "default_component_of", full_product_name: { name: "freeradius-debuginfo-0:1.0.1-2.RHEL3.2.s390x as a component of Red Hat Enterprise Linux AS version 3", product_id: "3AS:freeradius-debuginfo-0:1.0.1-2.RHEL3.2.s390x", }, product_reference: "freeradius-debuginfo-0:1.0.1-2.RHEL3.2.s390x", relates_to_product_reference: "3AS", }, { category: "default_component_of", full_product_name: { name: "freeradius-debuginfo-0:1.0.1-2.RHEL3.2.x86_64 as a component of Red Hat Enterprise Linux AS version 3", product_id: "3AS:freeradius-debuginfo-0:1.0.1-2.RHEL3.2.x86_64", }, product_reference: "freeradius-debuginfo-0:1.0.1-2.RHEL3.2.x86_64", relates_to_product_reference: "3AS", }, { category: "default_component_of", full_product_name: { name: "freeradius-0:1.0.1-2.RHEL3.2.i386 as a component of Red Hat Enterprise Linux ES version 3", product_id: "3ES:freeradius-0:1.0.1-2.RHEL3.2.i386", }, product_reference: "freeradius-0:1.0.1-2.RHEL3.2.i386", relates_to_product_reference: "3ES", }, { category: "default_component_of", full_product_name: { name: "freeradius-0:1.0.1-2.RHEL3.2.ia64 as a component of Red Hat Enterprise Linux ES version 3", product_id: "3ES:freeradius-0:1.0.1-2.RHEL3.2.ia64", }, product_reference: "freeradius-0:1.0.1-2.RHEL3.2.ia64", relates_to_product_reference: "3ES", }, { category: "default_component_of", full_product_name: { name: "freeradius-0:1.0.1-2.RHEL3.2.ppc as a component of Red Hat Enterprise Linux ES version 3", product_id: "3ES:freeradius-0:1.0.1-2.RHEL3.2.ppc", }, product_reference: "freeradius-0:1.0.1-2.RHEL3.2.ppc", relates_to_product_reference: "3ES", }, { category: "default_component_of", full_product_name: { name: "freeradius-0:1.0.1-2.RHEL3.2.s390 as a component of Red Hat Enterprise Linux ES version 3", product_id: "3ES:freeradius-0:1.0.1-2.RHEL3.2.s390", }, product_reference: "freeradius-0:1.0.1-2.RHEL3.2.s390", relates_to_product_reference: "3ES", }, { category: "default_component_of", full_product_name: { name: "freeradius-0:1.0.1-2.RHEL3.2.s390x as a component of Red Hat Enterprise Linux ES version 3", product_id: "3ES:freeradius-0:1.0.1-2.RHEL3.2.s390x", }, product_reference: "freeradius-0:1.0.1-2.RHEL3.2.s390x", relates_to_product_reference: "3ES", }, { category: "default_component_of", full_product_name: { name: "freeradius-0:1.0.1-2.RHEL3.2.src as a component of Red Hat Enterprise Linux ES version 3", product_id: "3ES:freeradius-0:1.0.1-2.RHEL3.2.src", }, product_reference: "freeradius-0:1.0.1-2.RHEL3.2.src", relates_to_product_reference: "3ES", }, { category: "default_component_of", full_product_name: { name: "freeradius-0:1.0.1-2.RHEL3.2.x86_64 as a component of Red Hat Enterprise Linux ES version 3", product_id: "3ES:freeradius-0:1.0.1-2.RHEL3.2.x86_64", }, product_reference: "freeradius-0:1.0.1-2.RHEL3.2.x86_64", relates_to_product_reference: "3ES", }, { category: "default_component_of", full_product_name: { name: "freeradius-debuginfo-0:1.0.1-2.RHEL3.2.i386 as a component of Red Hat Enterprise Linux ES version 3", product_id: "3ES:freeradius-debuginfo-0:1.0.1-2.RHEL3.2.i386", }, product_reference: "freeradius-debuginfo-0:1.0.1-2.RHEL3.2.i386", relates_to_product_reference: "3ES", }, { category: "default_component_of", full_product_name: { name: "freeradius-debuginfo-0:1.0.1-2.RHEL3.2.ia64 as a component of Red Hat Enterprise Linux ES version 3", product_id: "3ES:freeradius-debuginfo-0:1.0.1-2.RHEL3.2.ia64", }, product_reference: "freeradius-debuginfo-0:1.0.1-2.RHEL3.2.ia64", relates_to_product_reference: "3ES", }, { category: "default_component_of", full_product_name: { name: "freeradius-debuginfo-0:1.0.1-2.RHEL3.2.ppc as a component of Red Hat Enterprise Linux ES version 3", product_id: "3ES:freeradius-debuginfo-0:1.0.1-2.RHEL3.2.ppc", }, product_reference: "freeradius-debuginfo-0:1.0.1-2.RHEL3.2.ppc", relates_to_product_reference: "3ES", }, { category: "default_component_of", full_product_name: { name: "freeradius-debuginfo-0:1.0.1-2.RHEL3.2.s390 as a component of Red Hat Enterprise Linux ES version 3", product_id: "3ES:freeradius-debuginfo-0:1.0.1-2.RHEL3.2.s390", }, product_reference: "freeradius-debuginfo-0:1.0.1-2.RHEL3.2.s390", relates_to_product_reference: "3ES", }, { category: "default_component_of", full_product_name: { name: "freeradius-debuginfo-0:1.0.1-2.RHEL3.2.s390x as a component of Red Hat Enterprise Linux ES version 3", product_id: "3ES:freeradius-debuginfo-0:1.0.1-2.RHEL3.2.s390x", }, product_reference: "freeradius-debuginfo-0:1.0.1-2.RHEL3.2.s390x", relates_to_product_reference: "3ES", }, { category: "default_component_of", full_product_name: { name: "freeradius-debuginfo-0:1.0.1-2.RHEL3.2.x86_64 as a component of Red Hat Enterprise Linux ES version 3", product_id: "3ES:freeradius-debuginfo-0:1.0.1-2.RHEL3.2.x86_64", }, product_reference: "freeradius-debuginfo-0:1.0.1-2.RHEL3.2.x86_64", relates_to_product_reference: "3ES", }, { category: "default_component_of", full_product_name: { name: "freeradius-0:1.0.1-3.RHEL4.3.i386 as a component of Red Hat Enterprise Linux AS version 4", product_id: "4AS:freeradius-0:1.0.1-3.RHEL4.3.i386", }, product_reference: "freeradius-0:1.0.1-3.RHEL4.3.i386", relates_to_product_reference: "4AS", }, { category: "default_component_of", full_product_name: { name: "freeradius-0:1.0.1-3.RHEL4.3.ia64 as a component of Red Hat Enterprise Linux AS version 4", product_id: "4AS:freeradius-0:1.0.1-3.RHEL4.3.ia64", }, product_reference: "freeradius-0:1.0.1-3.RHEL4.3.ia64", relates_to_product_reference: "4AS", }, { category: "default_component_of", full_product_name: { name: "freeradius-0:1.0.1-3.RHEL4.3.ppc as a component of Red Hat Enterprise Linux AS version 4", product_id: "4AS:freeradius-0:1.0.1-3.RHEL4.3.ppc", }, product_reference: "freeradius-0:1.0.1-3.RHEL4.3.ppc", relates_to_product_reference: "4AS", }, { category: "default_component_of", full_product_name: { name: "freeradius-0:1.0.1-3.RHEL4.3.s390 as a component of Red Hat Enterprise Linux AS version 4", product_id: "4AS:freeradius-0:1.0.1-3.RHEL4.3.s390", }, product_reference: "freeradius-0:1.0.1-3.RHEL4.3.s390", relates_to_product_reference: "4AS", }, { category: "default_component_of", full_product_name: { name: "freeradius-0:1.0.1-3.RHEL4.3.s390x as a component of Red Hat Enterprise Linux AS version 4", product_id: "4AS:freeradius-0:1.0.1-3.RHEL4.3.s390x", }, product_reference: "freeradius-0:1.0.1-3.RHEL4.3.s390x", relates_to_product_reference: "4AS", }, { category: "default_component_of", full_product_name: { name: "freeradius-0:1.0.1-3.RHEL4.3.src as a component of Red Hat Enterprise Linux AS version 4", product_id: "4AS:freeradius-0:1.0.1-3.RHEL4.3.src", }, product_reference: "freeradius-0:1.0.1-3.RHEL4.3.src", relates_to_product_reference: "4AS", }, { category: "default_component_of", full_product_name: { name: "freeradius-0:1.0.1-3.RHEL4.3.x86_64 as a component of Red Hat Enterprise Linux AS version 4", product_id: "4AS:freeradius-0:1.0.1-3.RHEL4.3.x86_64", }, product_reference: "freeradius-0:1.0.1-3.RHEL4.3.x86_64", relates_to_product_reference: "4AS", }, { category: "default_component_of", full_product_name: { name: "freeradius-debuginfo-0:1.0.1-3.RHEL4.3.i386 as a component of Red Hat Enterprise Linux AS version 4", product_id: "4AS:freeradius-debuginfo-0:1.0.1-3.RHEL4.3.i386", }, product_reference: "freeradius-debuginfo-0:1.0.1-3.RHEL4.3.i386", relates_to_product_reference: "4AS", }, { category: "default_component_of", full_product_name: { name: "freeradius-debuginfo-0:1.0.1-3.RHEL4.3.ia64 as a component of Red Hat Enterprise Linux AS version 4", product_id: "4AS:freeradius-debuginfo-0:1.0.1-3.RHEL4.3.ia64", }, product_reference: "freeradius-debuginfo-0:1.0.1-3.RHEL4.3.ia64", relates_to_product_reference: "4AS", }, { category: "default_component_of", full_product_name: { name: "freeradius-debuginfo-0:1.0.1-3.RHEL4.3.ppc as a component of Red Hat Enterprise Linux AS version 4", product_id: "4AS:freeradius-debuginfo-0:1.0.1-3.RHEL4.3.ppc", }, product_reference: "freeradius-debuginfo-0:1.0.1-3.RHEL4.3.ppc", relates_to_product_reference: "4AS", }, { category: "default_component_of", full_product_name: { name: "freeradius-debuginfo-0:1.0.1-3.RHEL4.3.s390 as a component of Red Hat Enterprise Linux AS version 4", product_id: "4AS:freeradius-debuginfo-0:1.0.1-3.RHEL4.3.s390", }, product_reference: "freeradius-debuginfo-0:1.0.1-3.RHEL4.3.s390", relates_to_product_reference: "4AS", }, { category: "default_component_of", full_product_name: { name: "freeradius-debuginfo-0:1.0.1-3.RHEL4.3.s390x as a component of Red Hat Enterprise Linux AS version 4", product_id: "4AS:freeradius-debuginfo-0:1.0.1-3.RHEL4.3.s390x", }, product_reference: "freeradius-debuginfo-0:1.0.1-3.RHEL4.3.s390x", relates_to_product_reference: "4AS", }, { category: "default_component_of", full_product_name: { name: "freeradius-debuginfo-0:1.0.1-3.RHEL4.3.x86_64 as a component of Red Hat Enterprise Linux AS version 4", product_id: "4AS:freeradius-debuginfo-0:1.0.1-3.RHEL4.3.x86_64", }, product_reference: "freeradius-debuginfo-0:1.0.1-3.RHEL4.3.x86_64", relates_to_product_reference: "4AS", }, { category: "default_component_of", full_product_name: { name: "freeradius-mysql-0:1.0.1-3.RHEL4.3.i386 as a component of Red Hat Enterprise Linux AS version 4", product_id: "4AS:freeradius-mysql-0:1.0.1-3.RHEL4.3.i386", }, product_reference: "freeradius-mysql-0:1.0.1-3.RHEL4.3.i386", relates_to_product_reference: "4AS", }, { category: "default_component_of", full_product_name: { name: "freeradius-mysql-0:1.0.1-3.RHEL4.3.ia64 as a component of Red Hat Enterprise Linux AS version 4", product_id: "4AS:freeradius-mysql-0:1.0.1-3.RHEL4.3.ia64", }, product_reference: "freeradius-mysql-0:1.0.1-3.RHEL4.3.ia64", relates_to_product_reference: "4AS", }, { category: "default_component_of", full_product_name: { name: "freeradius-mysql-0:1.0.1-3.RHEL4.3.ppc as a component of Red Hat Enterprise Linux AS version 4", product_id: "4AS:freeradius-mysql-0:1.0.1-3.RHEL4.3.ppc", }, product_reference: "freeradius-mysql-0:1.0.1-3.RHEL4.3.ppc", relates_to_product_reference: "4AS", }, { category: "default_component_of", full_product_name: { name: "freeradius-mysql-0:1.0.1-3.RHEL4.3.s390 as a component of Red Hat Enterprise Linux AS version 4", product_id: "4AS:freeradius-mysql-0:1.0.1-3.RHEL4.3.s390", }, product_reference: "freeradius-mysql-0:1.0.1-3.RHEL4.3.s390", relates_to_product_reference: "4AS", }, { category: "default_component_of", full_product_name: { name: "freeradius-mysql-0:1.0.1-3.RHEL4.3.s390x as a component of Red Hat Enterprise Linux AS version 4", product_id: "4AS:freeradius-mysql-0:1.0.1-3.RHEL4.3.s390x", }, product_reference: "freeradius-mysql-0:1.0.1-3.RHEL4.3.s390x", relates_to_product_reference: "4AS", }, { category: "default_component_of", full_product_name: { name: "freeradius-mysql-0:1.0.1-3.RHEL4.3.x86_64 as a component of Red Hat Enterprise Linux AS version 4", product_id: "4AS:freeradius-mysql-0:1.0.1-3.RHEL4.3.x86_64", }, product_reference: "freeradius-mysql-0:1.0.1-3.RHEL4.3.x86_64", relates_to_product_reference: "4AS", }, { category: "default_component_of", full_product_name: { name: "freeradius-postgresql-0:1.0.1-3.RHEL4.3.i386 as a component of Red Hat Enterprise Linux AS version 4", product_id: "4AS:freeradius-postgresql-0:1.0.1-3.RHEL4.3.i386", }, product_reference: "freeradius-postgresql-0:1.0.1-3.RHEL4.3.i386", relates_to_product_reference: "4AS", }, { category: "default_component_of", full_product_name: { name: "freeradius-postgresql-0:1.0.1-3.RHEL4.3.ia64 as a component of Red Hat Enterprise Linux AS version 4", product_id: "4AS:freeradius-postgresql-0:1.0.1-3.RHEL4.3.ia64", }, product_reference: "freeradius-postgresql-0:1.0.1-3.RHEL4.3.ia64", relates_to_product_reference: "4AS", }, { category: "default_component_of", full_product_name: { name: "freeradius-postgresql-0:1.0.1-3.RHEL4.3.ppc as a component of Red Hat Enterprise Linux AS version 4", product_id: "4AS:freeradius-postgresql-0:1.0.1-3.RHEL4.3.ppc", }, product_reference: "freeradius-postgresql-0:1.0.1-3.RHEL4.3.ppc", relates_to_product_reference: "4AS", }, { category: "default_component_of", full_product_name: { name: "freeradius-postgresql-0:1.0.1-3.RHEL4.3.s390 as a component of Red Hat Enterprise Linux AS version 4", product_id: "4AS:freeradius-postgresql-0:1.0.1-3.RHEL4.3.s390", }, product_reference: "freeradius-postgresql-0:1.0.1-3.RHEL4.3.s390", relates_to_product_reference: "4AS", }, { category: "default_component_of", full_product_name: { name: "freeradius-postgresql-0:1.0.1-3.RHEL4.3.s390x as a component of Red Hat Enterprise Linux AS version 4", product_id: "4AS:freeradius-postgresql-0:1.0.1-3.RHEL4.3.s390x", }, product_reference: "freeradius-postgresql-0:1.0.1-3.RHEL4.3.s390x", relates_to_product_reference: "4AS", }, { category: "default_component_of", full_product_name: { name: "freeradius-postgresql-0:1.0.1-3.RHEL4.3.x86_64 as a component of Red Hat Enterprise Linux AS version 4", product_id: "4AS:freeradius-postgresql-0:1.0.1-3.RHEL4.3.x86_64", }, product_reference: "freeradius-postgresql-0:1.0.1-3.RHEL4.3.x86_64", relates_to_product_reference: "4AS", }, { category: "default_component_of", full_product_name: { name: "freeradius-unixODBC-0:1.0.1-3.RHEL4.3.i386 as a component of Red Hat Enterprise Linux AS version 4", product_id: "4AS:freeradius-unixODBC-0:1.0.1-3.RHEL4.3.i386", }, product_reference: "freeradius-unixODBC-0:1.0.1-3.RHEL4.3.i386", relates_to_product_reference: "4AS", }, { category: "default_component_of", full_product_name: { name: "freeradius-unixODBC-0:1.0.1-3.RHEL4.3.ia64 as a component of Red Hat Enterprise Linux AS version 4", product_id: "4AS:freeradius-unixODBC-0:1.0.1-3.RHEL4.3.ia64", }, product_reference: "freeradius-unixODBC-0:1.0.1-3.RHEL4.3.ia64", relates_to_product_reference: "4AS", }, { category: "default_component_of", full_product_name: { name: "freeradius-unixODBC-0:1.0.1-3.RHEL4.3.ppc as a component of Red Hat Enterprise Linux AS version 4", product_id: "4AS:freeradius-unixODBC-0:1.0.1-3.RHEL4.3.ppc", }, product_reference: "freeradius-unixODBC-0:1.0.1-3.RHEL4.3.ppc", relates_to_product_reference: "4AS", }, { category: "default_component_of", full_product_name: { name: "freeradius-unixODBC-0:1.0.1-3.RHEL4.3.s390 as a component of Red Hat Enterprise Linux AS version 4", product_id: "4AS:freeradius-unixODBC-0:1.0.1-3.RHEL4.3.s390", }, product_reference: "freeradius-unixODBC-0:1.0.1-3.RHEL4.3.s390", relates_to_product_reference: "4AS", }, { category: "default_component_of", full_product_name: { name: "freeradius-unixODBC-0:1.0.1-3.RHEL4.3.s390x as a component of Red Hat Enterprise Linux AS version 4", product_id: "4AS:freeradius-unixODBC-0:1.0.1-3.RHEL4.3.s390x", }, product_reference: "freeradius-unixODBC-0:1.0.1-3.RHEL4.3.s390x", relates_to_product_reference: "4AS", }, { category: "default_component_of", full_product_name: { name: "freeradius-unixODBC-0:1.0.1-3.RHEL4.3.x86_64 as a component of Red Hat Enterprise Linux AS version 4", product_id: "4AS:freeradius-unixODBC-0:1.0.1-3.RHEL4.3.x86_64", }, product_reference: "freeradius-unixODBC-0:1.0.1-3.RHEL4.3.x86_64", relates_to_product_reference: "4AS", }, { category: "default_component_of", full_product_name: { name: "freeradius-0:1.0.1-3.RHEL4.3.i386 as a component of Red Hat Enterprise Linux ES version 4", product_id: "4ES:freeradius-0:1.0.1-3.RHEL4.3.i386", }, product_reference: "freeradius-0:1.0.1-3.RHEL4.3.i386", relates_to_product_reference: "4ES", }, { category: "default_component_of", full_product_name: { name: "freeradius-0:1.0.1-3.RHEL4.3.ia64 as a component of Red Hat Enterprise Linux ES version 4", product_id: "4ES:freeradius-0:1.0.1-3.RHEL4.3.ia64", }, product_reference: "freeradius-0:1.0.1-3.RHEL4.3.ia64", relates_to_product_reference: "4ES", }, { category: "default_component_of", full_product_name: { name: "freeradius-0:1.0.1-3.RHEL4.3.ppc as a component of Red Hat Enterprise Linux ES version 4", product_id: "4ES:freeradius-0:1.0.1-3.RHEL4.3.ppc", }, product_reference: "freeradius-0:1.0.1-3.RHEL4.3.ppc", relates_to_product_reference: "4ES", }, { category: "default_component_of", full_product_name: { name: "freeradius-0:1.0.1-3.RHEL4.3.s390 as a component of Red Hat Enterprise Linux ES version 4", product_id: "4ES:freeradius-0:1.0.1-3.RHEL4.3.s390", }, product_reference: "freeradius-0:1.0.1-3.RHEL4.3.s390", relates_to_product_reference: "4ES", }, { category: "default_component_of", full_product_name: { name: "freeradius-0:1.0.1-3.RHEL4.3.s390x as a component of Red Hat Enterprise Linux ES version 4", product_id: "4ES:freeradius-0:1.0.1-3.RHEL4.3.s390x", }, product_reference: "freeradius-0:1.0.1-3.RHEL4.3.s390x", relates_to_product_reference: "4ES", }, { category: "default_component_of", full_product_name: { name: "freeradius-0:1.0.1-3.RHEL4.3.src as a component of Red Hat Enterprise Linux ES version 4", product_id: "4ES:freeradius-0:1.0.1-3.RHEL4.3.src", }, product_reference: "freeradius-0:1.0.1-3.RHEL4.3.src", relates_to_product_reference: "4ES", }, { category: "default_component_of", full_product_name: { name: "freeradius-0:1.0.1-3.RHEL4.3.x86_64 as a component of Red Hat Enterprise Linux ES version 4", product_id: "4ES:freeradius-0:1.0.1-3.RHEL4.3.x86_64", }, product_reference: "freeradius-0:1.0.1-3.RHEL4.3.x86_64", relates_to_product_reference: "4ES", }, { category: "default_component_of", full_product_name: { name: "freeradius-debuginfo-0:1.0.1-3.RHEL4.3.i386 as a component of Red Hat Enterprise Linux ES version 4", product_id: "4ES:freeradius-debuginfo-0:1.0.1-3.RHEL4.3.i386", }, product_reference: "freeradius-debuginfo-0:1.0.1-3.RHEL4.3.i386", relates_to_product_reference: "4ES", }, { category: "default_component_of", full_product_name: { name: "freeradius-debuginfo-0:1.0.1-3.RHEL4.3.ia64 as a component of Red Hat Enterprise Linux ES version 4", product_id: "4ES:freeradius-debuginfo-0:1.0.1-3.RHEL4.3.ia64", }, product_reference: "freeradius-debuginfo-0:1.0.1-3.RHEL4.3.ia64", relates_to_product_reference: "4ES", }, { category: "default_component_of", full_product_name: { name: "freeradius-debuginfo-0:1.0.1-3.RHEL4.3.ppc as a component of Red Hat Enterprise Linux ES version 4", product_id: "4ES:freeradius-debuginfo-0:1.0.1-3.RHEL4.3.ppc", }, product_reference: "freeradius-debuginfo-0:1.0.1-3.RHEL4.3.ppc", relates_to_product_reference: "4ES", }, { category: "default_component_of", full_product_name: { name: "freeradius-debuginfo-0:1.0.1-3.RHEL4.3.s390 as a component of Red Hat Enterprise Linux ES version 4", product_id: "4ES:freeradius-debuginfo-0:1.0.1-3.RHEL4.3.s390", }, product_reference: "freeradius-debuginfo-0:1.0.1-3.RHEL4.3.s390", relates_to_product_reference: "4ES", }, { category: "default_component_of", full_product_name: { name: "freeradius-debuginfo-0:1.0.1-3.RHEL4.3.s390x as a component of Red Hat Enterprise Linux ES version 4", product_id: "4ES:freeradius-debuginfo-0:1.0.1-3.RHEL4.3.s390x", }, product_reference: "freeradius-debuginfo-0:1.0.1-3.RHEL4.3.s390x", relates_to_product_reference: "4ES", }, { category: "default_component_of", full_product_name: { name: "freeradius-debuginfo-0:1.0.1-3.RHEL4.3.x86_64 as a component of Red Hat Enterprise Linux ES version 4", product_id: "4ES:freeradius-debuginfo-0:1.0.1-3.RHEL4.3.x86_64", }, product_reference: "freeradius-debuginfo-0:1.0.1-3.RHEL4.3.x86_64", relates_to_product_reference: "4ES", }, { category: "default_component_of", full_product_name: { name: "freeradius-mysql-0:1.0.1-3.RHEL4.3.i386 as a component of Red Hat Enterprise Linux ES version 4", product_id: "4ES:freeradius-mysql-0:1.0.1-3.RHEL4.3.i386", }, product_reference: "freeradius-mysql-0:1.0.1-3.RHEL4.3.i386", relates_to_product_reference: "4ES", }, { category: "default_component_of", full_product_name: { name: "freeradius-mysql-0:1.0.1-3.RHEL4.3.ia64 as a component of Red Hat Enterprise Linux ES version 4", product_id: "4ES:freeradius-mysql-0:1.0.1-3.RHEL4.3.ia64", }, product_reference: "freeradius-mysql-0:1.0.1-3.RHEL4.3.ia64", relates_to_product_reference: "4ES", }, { category: "default_component_of", full_product_name: { name: "freeradius-mysql-0:1.0.1-3.RHEL4.3.ppc as a component of Red Hat Enterprise Linux ES version 4", product_id: "4ES:freeradius-mysql-0:1.0.1-3.RHEL4.3.ppc", }, product_reference: "freeradius-mysql-0:1.0.1-3.RHEL4.3.ppc", relates_to_product_reference: "4ES", }, { category: "default_component_of", full_product_name: { name: "freeradius-mysql-0:1.0.1-3.RHEL4.3.s390 as a component of Red Hat Enterprise Linux ES version 4", product_id: "4ES:freeradius-mysql-0:1.0.1-3.RHEL4.3.s390", }, product_reference: "freeradius-mysql-0:1.0.1-3.RHEL4.3.s390", relates_to_product_reference: "4ES", }, { category: "default_component_of", full_product_name: { name: "freeradius-mysql-0:1.0.1-3.RHEL4.3.s390x as a component of Red Hat Enterprise Linux ES version 4", product_id: "4ES:freeradius-mysql-0:1.0.1-3.RHEL4.3.s390x", }, product_reference: "freeradius-mysql-0:1.0.1-3.RHEL4.3.s390x", relates_to_product_reference: "4ES", }, { category: "default_component_of", full_product_name: { name: "freeradius-mysql-0:1.0.1-3.RHEL4.3.x86_64 as a component of Red Hat Enterprise Linux ES version 4", product_id: "4ES:freeradius-mysql-0:1.0.1-3.RHEL4.3.x86_64", }, product_reference: "freeradius-mysql-0:1.0.1-3.RHEL4.3.x86_64", relates_to_product_reference: "4ES", }, { category: "default_component_of", full_product_name: { name: "freeradius-postgresql-0:1.0.1-3.RHEL4.3.i386 as a component of Red Hat Enterprise Linux ES version 4", product_id: "4ES:freeradius-postgresql-0:1.0.1-3.RHEL4.3.i386", }, product_reference: "freeradius-postgresql-0:1.0.1-3.RHEL4.3.i386", relates_to_product_reference: "4ES", }, { category: "default_component_of", full_product_name: { name: "freeradius-postgresql-0:1.0.1-3.RHEL4.3.ia64 as a component of Red Hat Enterprise Linux ES version 4", product_id: "4ES:freeradius-postgresql-0:1.0.1-3.RHEL4.3.ia64", }, product_reference: "freeradius-postgresql-0:1.0.1-3.RHEL4.3.ia64", relates_to_product_reference: "4ES", }, { category: "default_component_of", full_product_name: { name: "freeradius-postgresql-0:1.0.1-3.RHEL4.3.ppc as a component of Red Hat Enterprise Linux ES version 4", product_id: "4ES:freeradius-postgresql-0:1.0.1-3.RHEL4.3.ppc", }, product_reference: "freeradius-postgresql-0:1.0.1-3.RHEL4.3.ppc", relates_to_product_reference: "4ES", }, { category: "default_component_of", full_product_name: { name: "freeradius-postgresql-0:1.0.1-3.RHEL4.3.s390 as a component of Red Hat Enterprise Linux ES version 4", product_id: "4ES:freeradius-postgresql-0:1.0.1-3.RHEL4.3.s390", }, product_reference: "freeradius-postgresql-0:1.0.1-3.RHEL4.3.s390", relates_to_product_reference: "4ES", }, { category: "default_component_of", full_product_name: { name: "freeradius-postgresql-0:1.0.1-3.RHEL4.3.s390x as a component of Red Hat Enterprise Linux ES version 4", product_id: "4ES:freeradius-postgresql-0:1.0.1-3.RHEL4.3.s390x", }, product_reference: "freeradius-postgresql-0:1.0.1-3.RHEL4.3.s390x", relates_to_product_reference: "4ES", }, { category: "default_component_of", full_product_name: { name: "freeradius-postgresql-0:1.0.1-3.RHEL4.3.x86_64 as a component of Red Hat Enterprise Linux ES version 4", product_id: "4ES:freeradius-postgresql-0:1.0.1-3.RHEL4.3.x86_64", }, product_reference: "freeradius-postgresql-0:1.0.1-3.RHEL4.3.x86_64", relates_to_product_reference: "4ES", }, { category: "default_component_of", full_product_name: { name: "freeradius-unixODBC-0:1.0.1-3.RHEL4.3.i386 as a component of Red Hat Enterprise Linux ES version 4", product_id: "4ES:freeradius-unixODBC-0:1.0.1-3.RHEL4.3.i386", }, product_reference: "freeradius-unixODBC-0:1.0.1-3.RHEL4.3.i386", relates_to_product_reference: "4ES", }, { category: "default_component_of", full_product_name: { name: "freeradius-unixODBC-0:1.0.1-3.RHEL4.3.ia64 as a component of Red Hat Enterprise Linux ES version 4", product_id: "4ES:freeradius-unixODBC-0:1.0.1-3.RHEL4.3.ia64", }, product_reference: "freeradius-unixODBC-0:1.0.1-3.RHEL4.3.ia64", relates_to_product_reference: "4ES", }, { category: "default_component_of", full_product_name: { name: "freeradius-unixODBC-0:1.0.1-3.RHEL4.3.ppc as a component of Red Hat Enterprise Linux ES version 4", product_id: "4ES:freeradius-unixODBC-0:1.0.1-3.RHEL4.3.ppc", }, product_reference: "freeradius-unixODBC-0:1.0.1-3.RHEL4.3.ppc", relates_to_product_reference: "4ES", }, { category: "default_component_of", full_product_name: { name: "freeradius-unixODBC-0:1.0.1-3.RHEL4.3.s390 as a component of Red Hat Enterprise Linux ES version 4", product_id: "4ES:freeradius-unixODBC-0:1.0.1-3.RHEL4.3.s390", }, product_reference: "freeradius-unixODBC-0:1.0.1-3.RHEL4.3.s390", relates_to_product_reference: "4ES", }, { category: "default_component_of", full_product_name: { name: "freeradius-unixODBC-0:1.0.1-3.RHEL4.3.s390x as a component of Red Hat Enterprise Linux ES version 4", product_id: "4ES:freeradius-unixODBC-0:1.0.1-3.RHEL4.3.s390x", }, product_reference: "freeradius-unixODBC-0:1.0.1-3.RHEL4.3.s390x", relates_to_product_reference: "4ES", }, { category: "default_component_of", full_product_name: { name: "freeradius-unixODBC-0:1.0.1-3.RHEL4.3.x86_64 as a component of Red Hat Enterprise Linux ES version 4", product_id: "4ES:freeradius-unixODBC-0:1.0.1-3.RHEL4.3.x86_64", }, product_reference: "freeradius-unixODBC-0:1.0.1-3.RHEL4.3.x86_64", relates_to_product_reference: "4ES", }, ], }, vulnerabilities: [ { cve: "CVE-2005-4744", discovery_date: "2005-05-01T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1617862", }, ], notes: [ { category: "description", text: "Off-by-one error in the sql_error function in sql_unixodbc.c in FreeRADIUS 1.0.2.5-5, and possibly other versions including 1.0.4, might allow remote attackers to cause a denial of service (crash) and possibly execute arbitrary code by causing the external database query to fail. NOTE: this single issue is part of a larger-scale disclosure, originally by SUSE, which reported multiple issues that were disputed by FreeRADIUS. Disputed issues included file descriptor leaks, memory disclosure, LDAP injection, and other issues. Without additional information, the most recent FreeRADIUS report is being regarded as the authoritative source for this CVE identifier.", title: "Vulnerability description", }, { category: "summary", text: "security flaw", title: "Vulnerability summary", }, ], product_status: { fixed: [ "3AS:freeradius-0:1.0.1-2.RHEL3.2.i386", "3AS:freeradius-0:1.0.1-2.RHEL3.2.ia64", "3AS:freeradius-0:1.0.1-2.RHEL3.2.ppc", "3AS:freeradius-0:1.0.1-2.RHEL3.2.s390", "3AS:freeradius-0:1.0.1-2.RHEL3.2.s390x", "3AS:freeradius-0:1.0.1-2.RHEL3.2.src", "3AS:freeradius-0:1.0.1-2.RHEL3.2.x86_64", "3AS:freeradius-debuginfo-0:1.0.1-2.RHEL3.2.i386", "3AS:freeradius-debuginfo-0:1.0.1-2.RHEL3.2.ia64", "3AS:freeradius-debuginfo-0:1.0.1-2.RHEL3.2.ppc", "3AS:freeradius-debuginfo-0:1.0.1-2.RHEL3.2.s390", "3AS:freeradius-debuginfo-0:1.0.1-2.RHEL3.2.s390x", "3AS:freeradius-debuginfo-0:1.0.1-2.RHEL3.2.x86_64", "3ES:freeradius-0:1.0.1-2.RHEL3.2.i386", "3ES:freeradius-0:1.0.1-2.RHEL3.2.ia64", "3ES:freeradius-0:1.0.1-2.RHEL3.2.ppc", "3ES:freeradius-0:1.0.1-2.RHEL3.2.s390", "3ES:freeradius-0:1.0.1-2.RHEL3.2.s390x", "3ES:freeradius-0:1.0.1-2.RHEL3.2.src", "3ES:freeradius-0:1.0.1-2.RHEL3.2.x86_64", "3ES:freeradius-debuginfo-0:1.0.1-2.RHEL3.2.i386", "3ES:freeradius-debuginfo-0:1.0.1-2.RHEL3.2.ia64", "3ES:freeradius-debuginfo-0:1.0.1-2.RHEL3.2.ppc", "3ES:freeradius-debuginfo-0:1.0.1-2.RHEL3.2.s390", "3ES:freeradius-debuginfo-0:1.0.1-2.RHEL3.2.s390x", "3ES:freeradius-debuginfo-0:1.0.1-2.RHEL3.2.x86_64", "4AS:freeradius-0:1.0.1-3.RHEL4.3.i386", "4AS:freeradius-0:1.0.1-3.RHEL4.3.ia64", "4AS:freeradius-0:1.0.1-3.RHEL4.3.ppc", "4AS:freeradius-0:1.0.1-3.RHEL4.3.s390", "4AS:freeradius-0:1.0.1-3.RHEL4.3.s390x", "4AS:freeradius-0:1.0.1-3.RHEL4.3.src", "4AS:freeradius-0:1.0.1-3.RHEL4.3.x86_64", "4AS:freeradius-debuginfo-0:1.0.1-3.RHEL4.3.i386", "4AS:freeradius-debuginfo-0:1.0.1-3.RHEL4.3.ia64", "4AS:freeradius-debuginfo-0:1.0.1-3.RHEL4.3.ppc", "4AS:freeradius-debuginfo-0:1.0.1-3.RHEL4.3.s390", "4AS:freeradius-debuginfo-0:1.0.1-3.RHEL4.3.s390x", "4AS:freeradius-debuginfo-0:1.0.1-3.RHEL4.3.x86_64", "4AS:freeradius-mysql-0:1.0.1-3.RHEL4.3.i386", "4AS:freeradius-mysql-0:1.0.1-3.RHEL4.3.ia64", "4AS:freeradius-mysql-0:1.0.1-3.RHEL4.3.ppc", "4AS:freeradius-mysql-0:1.0.1-3.RHEL4.3.s390", "4AS:freeradius-mysql-0:1.0.1-3.RHEL4.3.s390x", "4AS:freeradius-mysql-0:1.0.1-3.RHEL4.3.x86_64", "4AS:freeradius-postgresql-0:1.0.1-3.RHEL4.3.i386", "4AS:freeradius-postgresql-0:1.0.1-3.RHEL4.3.ia64", "4AS:freeradius-postgresql-0:1.0.1-3.RHEL4.3.ppc", "4AS:freeradius-postgresql-0:1.0.1-3.RHEL4.3.s390", "4AS:freeradius-postgresql-0:1.0.1-3.RHEL4.3.s390x", "4AS:freeradius-postgresql-0:1.0.1-3.RHEL4.3.x86_64", "4AS:freeradius-unixODBC-0:1.0.1-3.RHEL4.3.i386", "4AS:freeradius-unixODBC-0:1.0.1-3.RHEL4.3.ia64", "4AS:freeradius-unixODBC-0:1.0.1-3.RHEL4.3.ppc", "4AS:freeradius-unixODBC-0:1.0.1-3.RHEL4.3.s390", "4AS:freeradius-unixODBC-0:1.0.1-3.RHEL4.3.s390x", "4AS:freeradius-unixODBC-0:1.0.1-3.RHEL4.3.x86_64", "4ES:freeradius-0:1.0.1-3.RHEL4.3.i386", "4ES:freeradius-0:1.0.1-3.RHEL4.3.ia64", "4ES:freeradius-0:1.0.1-3.RHEL4.3.ppc", "4ES:freeradius-0:1.0.1-3.RHEL4.3.s390", "4ES:freeradius-0:1.0.1-3.RHEL4.3.s390x", "4ES:freeradius-0:1.0.1-3.RHEL4.3.src", "4ES:freeradius-0:1.0.1-3.RHEL4.3.x86_64", "4ES:freeradius-debuginfo-0:1.0.1-3.RHEL4.3.i386", "4ES:freeradius-debuginfo-0:1.0.1-3.RHEL4.3.ia64", "4ES:freeradius-debuginfo-0:1.0.1-3.RHEL4.3.ppc", "4ES:freeradius-debuginfo-0:1.0.1-3.RHEL4.3.s390", "4ES:freeradius-debuginfo-0:1.0.1-3.RHEL4.3.s390x", "4ES:freeradius-debuginfo-0:1.0.1-3.RHEL4.3.x86_64", "4ES:freeradius-mysql-0:1.0.1-3.RHEL4.3.i386", "4ES:freeradius-mysql-0:1.0.1-3.RHEL4.3.ia64", "4ES:freeradius-mysql-0:1.0.1-3.RHEL4.3.ppc", "4ES:freeradius-mysql-0:1.0.1-3.RHEL4.3.s390", "4ES:freeradius-mysql-0:1.0.1-3.RHEL4.3.s390x", "4ES:freeradius-mysql-0:1.0.1-3.RHEL4.3.x86_64", "4ES:freeradius-postgresql-0:1.0.1-3.RHEL4.3.i386", "4ES:freeradius-postgresql-0:1.0.1-3.RHEL4.3.ia64", "4ES:freeradius-postgresql-0:1.0.1-3.RHEL4.3.ppc", "4ES:freeradius-postgresql-0:1.0.1-3.RHEL4.3.s390", "4ES:freeradius-postgresql-0:1.0.1-3.RHEL4.3.s390x", "4ES:freeradius-postgresql-0:1.0.1-3.RHEL4.3.x86_64", "4ES:freeradius-unixODBC-0:1.0.1-3.RHEL4.3.i386", "4ES:freeradius-unixODBC-0:1.0.1-3.RHEL4.3.ia64", "4ES:freeradius-unixODBC-0:1.0.1-3.RHEL4.3.ppc", "4ES:freeradius-unixODBC-0:1.0.1-3.RHEL4.3.s390", "4ES:freeradius-unixODBC-0:1.0.1-3.RHEL4.3.s390x", "4ES:freeradius-unixODBC-0:1.0.1-3.RHEL4.3.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2005-4744", }, { category: "external", summary: "RHBZ#1617862", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1617862", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2005-4744", url: "https://www.cve.org/CVERecord?id=CVE-2005-4744", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2005-4744", url: "https://nvd.nist.gov/vuln/detail/CVE-2005-4744", }, ], release_date: "2005-09-09T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2006-04-04T08:51:00+00:00", details: "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via Red Hat Network. To use Red Hat Network,\nlaunch the Red Hat Update Agent with the following command:\n\nup2date\n\nThis will start an interactive process that will result in the appropriate\nRPMs being upgraded on your system.", product_ids: [ "3AS:freeradius-0:1.0.1-2.RHEL3.2.i386", "3AS:freeradius-0:1.0.1-2.RHEL3.2.ia64", "3AS:freeradius-0:1.0.1-2.RHEL3.2.ppc", "3AS:freeradius-0:1.0.1-2.RHEL3.2.s390", "3AS:freeradius-0:1.0.1-2.RHEL3.2.s390x", "3AS:freeradius-0:1.0.1-2.RHEL3.2.src", "3AS:freeradius-0:1.0.1-2.RHEL3.2.x86_64", "3AS:freeradius-debuginfo-0:1.0.1-2.RHEL3.2.i386", "3AS:freeradius-debuginfo-0:1.0.1-2.RHEL3.2.ia64", "3AS:freeradius-debuginfo-0:1.0.1-2.RHEL3.2.ppc", "3AS:freeradius-debuginfo-0:1.0.1-2.RHEL3.2.s390", "3AS:freeradius-debuginfo-0:1.0.1-2.RHEL3.2.s390x", "3AS:freeradius-debuginfo-0:1.0.1-2.RHEL3.2.x86_64", "3ES:freeradius-0:1.0.1-2.RHEL3.2.i386", "3ES:freeradius-0:1.0.1-2.RHEL3.2.ia64", "3ES:freeradius-0:1.0.1-2.RHEL3.2.ppc", "3ES:freeradius-0:1.0.1-2.RHEL3.2.s390", "3ES:freeradius-0:1.0.1-2.RHEL3.2.s390x", "3ES:freeradius-0:1.0.1-2.RHEL3.2.src", "3ES:freeradius-0:1.0.1-2.RHEL3.2.x86_64", "3ES:freeradius-debuginfo-0:1.0.1-2.RHEL3.2.i386", "3ES:freeradius-debuginfo-0:1.0.1-2.RHEL3.2.ia64", "3ES:freeradius-debuginfo-0:1.0.1-2.RHEL3.2.ppc", "3ES:freeradius-debuginfo-0:1.0.1-2.RHEL3.2.s390", "3ES:freeradius-debuginfo-0:1.0.1-2.RHEL3.2.s390x", "3ES:freeradius-debuginfo-0:1.0.1-2.RHEL3.2.x86_64", "4AS:freeradius-0:1.0.1-3.RHEL4.3.i386", "4AS:freeradius-0:1.0.1-3.RHEL4.3.ia64", "4AS:freeradius-0:1.0.1-3.RHEL4.3.ppc", "4AS:freeradius-0:1.0.1-3.RHEL4.3.s390", "4AS:freeradius-0:1.0.1-3.RHEL4.3.s390x", "4AS:freeradius-0:1.0.1-3.RHEL4.3.src", "4AS:freeradius-0:1.0.1-3.RHEL4.3.x86_64", "4AS:freeradius-debuginfo-0:1.0.1-3.RHEL4.3.i386", "4AS:freeradius-debuginfo-0:1.0.1-3.RHEL4.3.ia64", "4AS:freeradius-debuginfo-0:1.0.1-3.RHEL4.3.ppc", "4AS:freeradius-debuginfo-0:1.0.1-3.RHEL4.3.s390", "4AS:freeradius-debuginfo-0:1.0.1-3.RHEL4.3.s390x", "4AS:freeradius-debuginfo-0:1.0.1-3.RHEL4.3.x86_64", "4AS:freeradius-mysql-0:1.0.1-3.RHEL4.3.i386", "4AS:freeradius-mysql-0:1.0.1-3.RHEL4.3.ia64", "4AS:freeradius-mysql-0:1.0.1-3.RHEL4.3.ppc", "4AS:freeradius-mysql-0:1.0.1-3.RHEL4.3.s390", "4AS:freeradius-mysql-0:1.0.1-3.RHEL4.3.s390x", "4AS:freeradius-mysql-0:1.0.1-3.RHEL4.3.x86_64", "4AS:freeradius-postgresql-0:1.0.1-3.RHEL4.3.i386", "4AS:freeradius-postgresql-0:1.0.1-3.RHEL4.3.ia64", "4AS:freeradius-postgresql-0:1.0.1-3.RHEL4.3.ppc", "4AS:freeradius-postgresql-0:1.0.1-3.RHEL4.3.s390", "4AS:freeradius-postgresql-0:1.0.1-3.RHEL4.3.s390x", "4AS:freeradius-postgresql-0:1.0.1-3.RHEL4.3.x86_64", "4AS:freeradius-unixODBC-0:1.0.1-3.RHEL4.3.i386", "4AS:freeradius-unixODBC-0:1.0.1-3.RHEL4.3.ia64", "4AS:freeradius-unixODBC-0:1.0.1-3.RHEL4.3.ppc", "4AS:freeradius-unixODBC-0:1.0.1-3.RHEL4.3.s390", "4AS:freeradius-unixODBC-0:1.0.1-3.RHEL4.3.s390x", "4AS:freeradius-unixODBC-0:1.0.1-3.RHEL4.3.x86_64", "4ES:freeradius-0:1.0.1-3.RHEL4.3.i386", "4ES:freeradius-0:1.0.1-3.RHEL4.3.ia64", "4ES:freeradius-0:1.0.1-3.RHEL4.3.ppc", "4ES:freeradius-0:1.0.1-3.RHEL4.3.s390", "4ES:freeradius-0:1.0.1-3.RHEL4.3.s390x", "4ES:freeradius-0:1.0.1-3.RHEL4.3.src", "4ES:freeradius-0:1.0.1-3.RHEL4.3.x86_64", "4ES:freeradius-debuginfo-0:1.0.1-3.RHEL4.3.i386", "4ES:freeradius-debuginfo-0:1.0.1-3.RHEL4.3.ia64", "4ES:freeradius-debuginfo-0:1.0.1-3.RHEL4.3.ppc", "4ES:freeradius-debuginfo-0:1.0.1-3.RHEL4.3.s390", "4ES:freeradius-debuginfo-0:1.0.1-3.RHEL4.3.s390x", "4ES:freeradius-debuginfo-0:1.0.1-3.RHEL4.3.x86_64", "4ES:freeradius-mysql-0:1.0.1-3.RHEL4.3.i386", "4ES:freeradius-mysql-0:1.0.1-3.RHEL4.3.ia64", "4ES:freeradius-mysql-0:1.0.1-3.RHEL4.3.ppc", "4ES:freeradius-mysql-0:1.0.1-3.RHEL4.3.s390", "4ES:freeradius-mysql-0:1.0.1-3.RHEL4.3.s390x", "4ES:freeradius-mysql-0:1.0.1-3.RHEL4.3.x86_64", "4ES:freeradius-postgresql-0:1.0.1-3.RHEL4.3.i386", "4ES:freeradius-postgresql-0:1.0.1-3.RHEL4.3.ia64", "4ES:freeradius-postgresql-0:1.0.1-3.RHEL4.3.ppc", "4ES:freeradius-postgresql-0:1.0.1-3.RHEL4.3.s390", "4ES:freeradius-postgresql-0:1.0.1-3.RHEL4.3.s390x", "4ES:freeradius-postgresql-0:1.0.1-3.RHEL4.3.x86_64", "4ES:freeradius-unixODBC-0:1.0.1-3.RHEL4.3.i386", "4ES:freeradius-unixODBC-0:1.0.1-3.RHEL4.3.ia64", "4ES:freeradius-unixODBC-0:1.0.1-3.RHEL4.3.ppc", "4ES:freeradius-unixODBC-0:1.0.1-3.RHEL4.3.s390", "4ES:freeradius-unixODBC-0:1.0.1-3.RHEL4.3.s390x", "4ES:freeradius-unixODBC-0:1.0.1-3.RHEL4.3.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2006:0271", }, ], threats: [ { category: "impact", details: "Low", }, ], title: "security flaw", }, { cve: "CVE-2006-1354", discovery_date: "2006-03-21T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1618034", }, ], notes: [ { category: "description", text: "Unspecified vulnerability in FreeRADIUS 1.0.0 up to 1.1.0 allows remote attackers to bypass authentication or cause a denial of service (server crash) via \"Insufficient input validation\" in the EAP-MSCHAPv2 state machine module.", title: "Vulnerability description", }, { category: "summary", text: "security flaw", title: "Vulnerability summary", }, ], product_status: { fixed: [ "3AS:freeradius-0:1.0.1-2.RHEL3.2.i386", "3AS:freeradius-0:1.0.1-2.RHEL3.2.ia64", "3AS:freeradius-0:1.0.1-2.RHEL3.2.ppc", "3AS:freeradius-0:1.0.1-2.RHEL3.2.s390", "3AS:freeradius-0:1.0.1-2.RHEL3.2.s390x", "3AS:freeradius-0:1.0.1-2.RHEL3.2.src", "3AS:freeradius-0:1.0.1-2.RHEL3.2.x86_64", "3AS:freeradius-debuginfo-0:1.0.1-2.RHEL3.2.i386", "3AS:freeradius-debuginfo-0:1.0.1-2.RHEL3.2.ia64", "3AS:freeradius-debuginfo-0:1.0.1-2.RHEL3.2.ppc", "3AS:freeradius-debuginfo-0:1.0.1-2.RHEL3.2.s390", "3AS:freeradius-debuginfo-0:1.0.1-2.RHEL3.2.s390x", "3AS:freeradius-debuginfo-0:1.0.1-2.RHEL3.2.x86_64", "3ES:freeradius-0:1.0.1-2.RHEL3.2.i386", "3ES:freeradius-0:1.0.1-2.RHEL3.2.ia64", "3ES:freeradius-0:1.0.1-2.RHEL3.2.ppc", "3ES:freeradius-0:1.0.1-2.RHEL3.2.s390", "3ES:freeradius-0:1.0.1-2.RHEL3.2.s390x", "3ES:freeradius-0:1.0.1-2.RHEL3.2.src", "3ES:freeradius-0:1.0.1-2.RHEL3.2.x86_64", "3ES:freeradius-debuginfo-0:1.0.1-2.RHEL3.2.i386", "3ES:freeradius-debuginfo-0:1.0.1-2.RHEL3.2.ia64", "3ES:freeradius-debuginfo-0:1.0.1-2.RHEL3.2.ppc", "3ES:freeradius-debuginfo-0:1.0.1-2.RHEL3.2.s390", "3ES:freeradius-debuginfo-0:1.0.1-2.RHEL3.2.s390x", "3ES:freeradius-debuginfo-0:1.0.1-2.RHEL3.2.x86_64", "4AS:freeradius-0:1.0.1-3.RHEL4.3.i386", "4AS:freeradius-0:1.0.1-3.RHEL4.3.ia64", "4AS:freeradius-0:1.0.1-3.RHEL4.3.ppc", "4AS:freeradius-0:1.0.1-3.RHEL4.3.s390", "4AS:freeradius-0:1.0.1-3.RHEL4.3.s390x", "4AS:freeradius-0:1.0.1-3.RHEL4.3.src", "4AS:freeradius-0:1.0.1-3.RHEL4.3.x86_64", "4AS:freeradius-debuginfo-0:1.0.1-3.RHEL4.3.i386", "4AS:freeradius-debuginfo-0:1.0.1-3.RHEL4.3.ia64", "4AS:freeradius-debuginfo-0:1.0.1-3.RHEL4.3.ppc", "4AS:freeradius-debuginfo-0:1.0.1-3.RHEL4.3.s390", "4AS:freeradius-debuginfo-0:1.0.1-3.RHEL4.3.s390x", "4AS:freeradius-debuginfo-0:1.0.1-3.RHEL4.3.x86_64", "4AS:freeradius-mysql-0:1.0.1-3.RHEL4.3.i386", "4AS:freeradius-mysql-0:1.0.1-3.RHEL4.3.ia64", "4AS:freeradius-mysql-0:1.0.1-3.RHEL4.3.ppc", "4AS:freeradius-mysql-0:1.0.1-3.RHEL4.3.s390", "4AS:freeradius-mysql-0:1.0.1-3.RHEL4.3.s390x", "4AS:freeradius-mysql-0:1.0.1-3.RHEL4.3.x86_64", "4AS:freeradius-postgresql-0:1.0.1-3.RHEL4.3.i386", "4AS:freeradius-postgresql-0:1.0.1-3.RHEL4.3.ia64", "4AS:freeradius-postgresql-0:1.0.1-3.RHEL4.3.ppc", "4AS:freeradius-postgresql-0:1.0.1-3.RHEL4.3.s390", "4AS:freeradius-postgresql-0:1.0.1-3.RHEL4.3.s390x", "4AS:freeradius-postgresql-0:1.0.1-3.RHEL4.3.x86_64", "4AS:freeradius-unixODBC-0:1.0.1-3.RHEL4.3.i386", "4AS:freeradius-unixODBC-0:1.0.1-3.RHEL4.3.ia64", "4AS:freeradius-unixODBC-0:1.0.1-3.RHEL4.3.ppc", "4AS:freeradius-unixODBC-0:1.0.1-3.RHEL4.3.s390", "4AS:freeradius-unixODBC-0:1.0.1-3.RHEL4.3.s390x", "4AS:freeradius-unixODBC-0:1.0.1-3.RHEL4.3.x86_64", "4ES:freeradius-0:1.0.1-3.RHEL4.3.i386", "4ES:freeradius-0:1.0.1-3.RHEL4.3.ia64", "4ES:freeradius-0:1.0.1-3.RHEL4.3.ppc", "4ES:freeradius-0:1.0.1-3.RHEL4.3.s390", "4ES:freeradius-0:1.0.1-3.RHEL4.3.s390x", "4ES:freeradius-0:1.0.1-3.RHEL4.3.src", "4ES:freeradius-0:1.0.1-3.RHEL4.3.x86_64", "4ES:freeradius-debuginfo-0:1.0.1-3.RHEL4.3.i386", "4ES:freeradius-debuginfo-0:1.0.1-3.RHEL4.3.ia64", "4ES:freeradius-debuginfo-0:1.0.1-3.RHEL4.3.ppc", "4ES:freeradius-debuginfo-0:1.0.1-3.RHEL4.3.s390", "4ES:freeradius-debuginfo-0:1.0.1-3.RHEL4.3.s390x", "4ES:freeradius-debuginfo-0:1.0.1-3.RHEL4.3.x86_64", "4ES:freeradius-mysql-0:1.0.1-3.RHEL4.3.i386", "4ES:freeradius-mysql-0:1.0.1-3.RHEL4.3.ia64", "4ES:freeradius-mysql-0:1.0.1-3.RHEL4.3.ppc", "4ES:freeradius-mysql-0:1.0.1-3.RHEL4.3.s390", "4ES:freeradius-mysql-0:1.0.1-3.RHEL4.3.s390x", "4ES:freeradius-mysql-0:1.0.1-3.RHEL4.3.x86_64", "4ES:freeradius-postgresql-0:1.0.1-3.RHEL4.3.i386", "4ES:freeradius-postgresql-0:1.0.1-3.RHEL4.3.ia64", "4ES:freeradius-postgresql-0:1.0.1-3.RHEL4.3.ppc", "4ES:freeradius-postgresql-0:1.0.1-3.RHEL4.3.s390", "4ES:freeradius-postgresql-0:1.0.1-3.RHEL4.3.s390x", "4ES:freeradius-postgresql-0:1.0.1-3.RHEL4.3.x86_64", "4ES:freeradius-unixODBC-0:1.0.1-3.RHEL4.3.i386", "4ES:freeradius-unixODBC-0:1.0.1-3.RHEL4.3.ia64", "4ES:freeradius-unixODBC-0:1.0.1-3.RHEL4.3.ppc", "4ES:freeradius-unixODBC-0:1.0.1-3.RHEL4.3.s390", "4ES:freeradius-unixODBC-0:1.0.1-3.RHEL4.3.s390x", "4ES:freeradius-unixODBC-0:1.0.1-3.RHEL4.3.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2006-1354", }, { category: "external", summary: "RHBZ#1618034", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1618034", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2006-1354", url: "https://www.cve.org/CVERecord?id=CVE-2006-1354", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2006-1354", url: "https://nvd.nist.gov/vuln/detail/CVE-2006-1354", }, ], release_date: "2006-03-20T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2006-04-04T08:51:00+00:00", details: "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via Red Hat Network. To use Red Hat Network,\nlaunch the Red Hat Update Agent with the following command:\n\nup2date\n\nThis will start an interactive process that will result in the appropriate\nRPMs being upgraded on your system.", product_ids: [ "3AS:freeradius-0:1.0.1-2.RHEL3.2.i386", "3AS:freeradius-0:1.0.1-2.RHEL3.2.ia64", "3AS:freeradius-0:1.0.1-2.RHEL3.2.ppc", "3AS:freeradius-0:1.0.1-2.RHEL3.2.s390", "3AS:freeradius-0:1.0.1-2.RHEL3.2.s390x", "3AS:freeradius-0:1.0.1-2.RHEL3.2.src", "3AS:freeradius-0:1.0.1-2.RHEL3.2.x86_64", "3AS:freeradius-debuginfo-0:1.0.1-2.RHEL3.2.i386", "3AS:freeradius-debuginfo-0:1.0.1-2.RHEL3.2.ia64", "3AS:freeradius-debuginfo-0:1.0.1-2.RHEL3.2.ppc", "3AS:freeradius-debuginfo-0:1.0.1-2.RHEL3.2.s390", "3AS:freeradius-debuginfo-0:1.0.1-2.RHEL3.2.s390x", "3AS:freeradius-debuginfo-0:1.0.1-2.RHEL3.2.x86_64", "3ES:freeradius-0:1.0.1-2.RHEL3.2.i386", "3ES:freeradius-0:1.0.1-2.RHEL3.2.ia64", "3ES:freeradius-0:1.0.1-2.RHEL3.2.ppc", "3ES:freeradius-0:1.0.1-2.RHEL3.2.s390", "3ES:freeradius-0:1.0.1-2.RHEL3.2.s390x", "3ES:freeradius-0:1.0.1-2.RHEL3.2.src", "3ES:freeradius-0:1.0.1-2.RHEL3.2.x86_64", "3ES:freeradius-debuginfo-0:1.0.1-2.RHEL3.2.i386", "3ES:freeradius-debuginfo-0:1.0.1-2.RHEL3.2.ia64", "3ES:freeradius-debuginfo-0:1.0.1-2.RHEL3.2.ppc", "3ES:freeradius-debuginfo-0:1.0.1-2.RHEL3.2.s390", "3ES:freeradius-debuginfo-0:1.0.1-2.RHEL3.2.s390x", "3ES:freeradius-debuginfo-0:1.0.1-2.RHEL3.2.x86_64", "4AS:freeradius-0:1.0.1-3.RHEL4.3.i386", "4AS:freeradius-0:1.0.1-3.RHEL4.3.ia64", "4AS:freeradius-0:1.0.1-3.RHEL4.3.ppc", "4AS:freeradius-0:1.0.1-3.RHEL4.3.s390", "4AS:freeradius-0:1.0.1-3.RHEL4.3.s390x", "4AS:freeradius-0:1.0.1-3.RHEL4.3.src", "4AS:freeradius-0:1.0.1-3.RHEL4.3.x86_64", "4AS:freeradius-debuginfo-0:1.0.1-3.RHEL4.3.i386", "4AS:freeradius-debuginfo-0:1.0.1-3.RHEL4.3.ia64", "4AS:freeradius-debuginfo-0:1.0.1-3.RHEL4.3.ppc", "4AS:freeradius-debuginfo-0:1.0.1-3.RHEL4.3.s390", "4AS:freeradius-debuginfo-0:1.0.1-3.RHEL4.3.s390x", "4AS:freeradius-debuginfo-0:1.0.1-3.RHEL4.3.x86_64", "4AS:freeradius-mysql-0:1.0.1-3.RHEL4.3.i386", "4AS:freeradius-mysql-0:1.0.1-3.RHEL4.3.ia64", "4AS:freeradius-mysql-0:1.0.1-3.RHEL4.3.ppc", "4AS:freeradius-mysql-0:1.0.1-3.RHEL4.3.s390", "4AS:freeradius-mysql-0:1.0.1-3.RHEL4.3.s390x", "4AS:freeradius-mysql-0:1.0.1-3.RHEL4.3.x86_64", "4AS:freeradius-postgresql-0:1.0.1-3.RHEL4.3.i386", "4AS:freeradius-postgresql-0:1.0.1-3.RHEL4.3.ia64", "4AS:freeradius-postgresql-0:1.0.1-3.RHEL4.3.ppc", "4AS:freeradius-postgresql-0:1.0.1-3.RHEL4.3.s390", "4AS:freeradius-postgresql-0:1.0.1-3.RHEL4.3.s390x", "4AS:freeradius-postgresql-0:1.0.1-3.RHEL4.3.x86_64", "4AS:freeradius-unixODBC-0:1.0.1-3.RHEL4.3.i386", "4AS:freeradius-unixODBC-0:1.0.1-3.RHEL4.3.ia64", "4AS:freeradius-unixODBC-0:1.0.1-3.RHEL4.3.ppc", "4AS:freeradius-unixODBC-0:1.0.1-3.RHEL4.3.s390", "4AS:freeradius-unixODBC-0:1.0.1-3.RHEL4.3.s390x", "4AS:freeradius-unixODBC-0:1.0.1-3.RHEL4.3.x86_64", "4ES:freeradius-0:1.0.1-3.RHEL4.3.i386", "4ES:freeradius-0:1.0.1-3.RHEL4.3.ia64", "4ES:freeradius-0:1.0.1-3.RHEL4.3.ppc", "4ES:freeradius-0:1.0.1-3.RHEL4.3.s390", "4ES:freeradius-0:1.0.1-3.RHEL4.3.s390x", "4ES:freeradius-0:1.0.1-3.RHEL4.3.src", "4ES:freeradius-0:1.0.1-3.RHEL4.3.x86_64", "4ES:freeradius-debuginfo-0:1.0.1-3.RHEL4.3.i386", "4ES:freeradius-debuginfo-0:1.0.1-3.RHEL4.3.ia64", "4ES:freeradius-debuginfo-0:1.0.1-3.RHEL4.3.ppc", "4ES:freeradius-debuginfo-0:1.0.1-3.RHEL4.3.s390", "4ES:freeradius-debuginfo-0:1.0.1-3.RHEL4.3.s390x", "4ES:freeradius-debuginfo-0:1.0.1-3.RHEL4.3.x86_64", "4ES:freeradius-mysql-0:1.0.1-3.RHEL4.3.i386", "4ES:freeradius-mysql-0:1.0.1-3.RHEL4.3.ia64", "4ES:freeradius-mysql-0:1.0.1-3.RHEL4.3.ppc", "4ES:freeradius-mysql-0:1.0.1-3.RHEL4.3.s390", "4ES:freeradius-mysql-0:1.0.1-3.RHEL4.3.s390x", "4ES:freeradius-mysql-0:1.0.1-3.RHEL4.3.x86_64", "4ES:freeradius-postgresql-0:1.0.1-3.RHEL4.3.i386", "4ES:freeradius-postgresql-0:1.0.1-3.RHEL4.3.ia64", "4ES:freeradius-postgresql-0:1.0.1-3.RHEL4.3.ppc", "4ES:freeradius-postgresql-0:1.0.1-3.RHEL4.3.s390", "4ES:freeradius-postgresql-0:1.0.1-3.RHEL4.3.s390x", "4ES:freeradius-postgresql-0:1.0.1-3.RHEL4.3.x86_64", "4ES:freeradius-unixODBC-0:1.0.1-3.RHEL4.3.i386", "4ES:freeradius-unixODBC-0:1.0.1-3.RHEL4.3.ia64", "4ES:freeradius-unixODBC-0:1.0.1-3.RHEL4.3.ppc", "4ES:freeradius-unixODBC-0:1.0.1-3.RHEL4.3.s390", "4ES:freeradius-unixODBC-0:1.0.1-3.RHEL4.3.s390x", "4ES:freeradius-unixODBC-0:1.0.1-3.RHEL4.3.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2006:0271", }, ], threats: [ { category: "impact", details: "Important", }, ], title: "security flaw", }, ], }
rhsa-2006_0271
Vulnerability from csaf_redhat
Published
2006-04-04 08:51
Modified
2024-11-22 00:11
Summary
Red Hat Security Advisory: freeradius security update
Notes
Topic
Updated freeradius packages that fix an authentication weakness are now
available.
This update has been rated as having important security impact by the Red
Hat Security Response Team.
Details
FreeRADIUS is a high-performance and highly configurable free RADIUS server
designed to allow centralized authentication and authorization for a network.
A bug was found in the way FreeRADIUS authenticates users via the MSCHAP V2
protocol. It is possible for a remote attacker to authenticate as a victim
by sending a malformed MSCHAP V2 login request to the FreeRADIUS server.
(CVE-2006-1354)
Please note that FreeRADIUS installations not using the MSCHAP V2 protocol
for authentication are not vulnerable to this issue.
A bug was also found in the way FreeRADIUS logs SQL errors from the
sql_unixodbc module. It may be possible for an attacker to cause FreeRADIUS
to crash or execute arbitrary code if they are able to manipulate the SQL
database FreeRADIUS is connecting to. (CVE-2005-4744)
Users of FreeRADIUS should update to these erratum packages, which contain
backported patches and are not vulnerable to these issues.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{ document: { aggregate_severity: { namespace: "https://access.redhat.com/security/updates/classification/", text: "Important", }, category: "csaf_security_advisory", csaf_version: "2.0", distribution: { text: "Copyright © Red Hat, Inc. All rights reserved.", tlp: { label: "WHITE", url: "https://www.first.org/tlp/", }, }, lang: "en", notes: [ { category: "summary", text: "Updated freeradius packages that fix an authentication weakness are now\navailable.\n\nThis update has been rated as having important security impact by the Red\nHat Security Response Team.", title: "Topic", }, { category: "general", text: "FreeRADIUS is a high-performance and highly configurable free RADIUS server\ndesigned to allow centralized authentication and authorization for a network. \n\nA bug was found in the way FreeRADIUS authenticates users via the MSCHAP V2\nprotocol. It is possible for a remote attacker to authenticate as a victim\nby sending a malformed MSCHAP V2 login request to the FreeRADIUS server.\n(CVE-2006-1354)\n\nPlease note that FreeRADIUS installations not using the MSCHAP V2 protocol\nfor authentication are not vulnerable to this issue.\n\nA bug was also found in the way FreeRADIUS logs SQL errors from the\nsql_unixodbc module. It may be possible for an attacker to cause FreeRADIUS\nto crash or execute arbitrary code if they are able to manipulate the SQL\ndatabase FreeRADIUS is connecting to. (CVE-2005-4744)\n\nUsers of FreeRADIUS should update to these erratum packages, which contain\nbackported patches and are not vulnerable to these issues.", title: "Details", }, { category: "legal_disclaimer", text: "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", title: "Terms of Use", }, ], publisher: { category: "vendor", contact_details: "https://access.redhat.com/security/team/contact/", issuing_authority: "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", name: "Red Hat Product Security", namespace: "https://www.redhat.com", }, references: [ { category: "self", summary: "https://access.redhat.com/errata/RHSA-2006:0271", url: "https://access.redhat.com/errata/RHSA-2006:0271", }, { category: "external", summary: "https://access.redhat.com/security/updates/classification/#important", url: "https://access.redhat.com/security/updates/classification/#important", }, { category: "external", summary: "167676", url: "https://bugzilla.redhat.com/show_bug.cgi?id=167676", }, { category: "external", summary: "186083", url: "https://bugzilla.redhat.com/show_bug.cgi?id=186083", }, { category: "self", summary: "Canonical URL", url: "https://security.access.redhat.com/data/csaf/v2/advisories/2006/rhsa-2006_0271.json", }, ], title: "Red Hat Security Advisory: freeradius security update", tracking: { current_release_date: "2024-11-22T00:11:16+00:00", generator: { date: "2024-11-22T00:11:16+00:00", engine: { name: "Red Hat SDEngine", version: "4.2.1", }, }, id: "RHSA-2006:0271", initial_release_date: "2006-04-04T08:51:00+00:00", revision_history: [ { date: "2006-04-04T08:51:00+00:00", number: "1", summary: "Initial version", }, { date: "2006-04-04T00:00:00+00:00", number: "2", summary: "Last updated version", }, { date: "2024-11-22T00:11:16+00:00", number: "3", summary: "Last generated version", }, ], status: "final", version: "3", }, }, product_tree: { branches: [ { branches: [ { branches: [ { category: "product_name", name: "Red Hat Enterprise Linux AS version 3", product: { name: "Red Hat Enterprise Linux AS version 3", product_id: "3AS", product_identification_helper: { cpe: "cpe:/o:redhat:enterprise_linux:3::as", }, }, }, { category: "product_name", name: "Red Hat Enterprise Linux ES version 3", product: { name: "Red Hat Enterprise Linux ES version 3", product_id: "3ES", product_identification_helper: { cpe: "cpe:/o:redhat:enterprise_linux:3::es", }, }, }, { category: "product_name", name: "Red Hat Enterprise Linux AS version 4", product: { name: "Red Hat Enterprise Linux AS version 4", product_id: "4AS", product_identification_helper: { cpe: "cpe:/o:redhat:enterprise_linux:4::as", }, }, }, { category: "product_name", name: "Red Hat Enterprise Linux ES version 4", product: { name: "Red Hat Enterprise Linux ES version 4", product_id: "4ES", product_identification_helper: { cpe: "cpe:/o:redhat:enterprise_linux:4::es", }, }, }, ], category: "product_family", name: "Red Hat Enterprise Linux", }, { branches: [ { category: "product_version", name: "freeradius-0:1.0.1-2.RHEL3.2.ia64", product: { name: "freeradius-0:1.0.1-2.RHEL3.2.ia64", product_id: "freeradius-0:1.0.1-2.RHEL3.2.ia64", product_identification_helper: { purl: "pkg:rpm/redhat/freeradius@1.0.1-2.RHEL3.2?arch=ia64", }, }, }, { category: "product_version", name: "freeradius-debuginfo-0:1.0.1-2.RHEL3.2.ia64", product: { name: "freeradius-debuginfo-0:1.0.1-2.RHEL3.2.ia64", product_id: "freeradius-debuginfo-0:1.0.1-2.RHEL3.2.ia64", product_identification_helper: { purl: "pkg:rpm/redhat/freeradius-debuginfo@1.0.1-2.RHEL3.2?arch=ia64", }, }, }, { category: "product_version", name: "freeradius-postgresql-0:1.0.1-3.RHEL4.3.ia64", product: { name: "freeradius-postgresql-0:1.0.1-3.RHEL4.3.ia64", product_id: "freeradius-postgresql-0:1.0.1-3.RHEL4.3.ia64", product_identification_helper: { purl: "pkg:rpm/redhat/freeradius-postgresql@1.0.1-3.RHEL4.3?arch=ia64", }, }, }, { category: "product_version", name: "freeradius-unixODBC-0:1.0.1-3.RHEL4.3.ia64", product: { name: "freeradius-unixODBC-0:1.0.1-3.RHEL4.3.ia64", product_id: "freeradius-unixODBC-0:1.0.1-3.RHEL4.3.ia64", product_identification_helper: { purl: "pkg:rpm/redhat/freeradius-unixODBC@1.0.1-3.RHEL4.3?arch=ia64", }, }, }, { category: "product_version", name: "freeradius-0:1.0.1-3.RHEL4.3.ia64", product: { name: "freeradius-0:1.0.1-3.RHEL4.3.ia64", product_id: "freeradius-0:1.0.1-3.RHEL4.3.ia64", product_identification_helper: { purl: "pkg:rpm/redhat/freeradius@1.0.1-3.RHEL4.3?arch=ia64", }, }, }, { category: "product_version", name: "freeradius-mysql-0:1.0.1-3.RHEL4.3.ia64", product: { name: "freeradius-mysql-0:1.0.1-3.RHEL4.3.ia64", product_id: "freeradius-mysql-0:1.0.1-3.RHEL4.3.ia64", product_identification_helper: { purl: "pkg:rpm/redhat/freeradius-mysql@1.0.1-3.RHEL4.3?arch=ia64", }, }, }, { category: "product_version", name: "freeradius-debuginfo-0:1.0.1-3.RHEL4.3.ia64", product: { name: "freeradius-debuginfo-0:1.0.1-3.RHEL4.3.ia64", product_id: "freeradius-debuginfo-0:1.0.1-3.RHEL4.3.ia64", product_identification_helper: { purl: "pkg:rpm/redhat/freeradius-debuginfo@1.0.1-3.RHEL4.3?arch=ia64", }, }, }, ], category: "architecture", name: "ia64", }, { branches: [ { category: "product_version", name: "freeradius-0:1.0.1-2.RHEL3.2.src", product: { name: "freeradius-0:1.0.1-2.RHEL3.2.src", product_id: "freeradius-0:1.0.1-2.RHEL3.2.src", product_identification_helper: { purl: "pkg:rpm/redhat/freeradius@1.0.1-2.RHEL3.2?arch=src", }, }, }, { category: "product_version", name: "freeradius-0:1.0.1-3.RHEL4.3.src", product: { name: "freeradius-0:1.0.1-3.RHEL4.3.src", product_id: "freeradius-0:1.0.1-3.RHEL4.3.src", product_identification_helper: { purl: "pkg:rpm/redhat/freeradius@1.0.1-3.RHEL4.3?arch=src", }, }, }, ], category: "architecture", name: "src", }, { branches: [ { category: "product_version", name: "freeradius-0:1.0.1-2.RHEL3.2.x86_64", product: { name: "freeradius-0:1.0.1-2.RHEL3.2.x86_64", product_id: "freeradius-0:1.0.1-2.RHEL3.2.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/freeradius@1.0.1-2.RHEL3.2?arch=x86_64", }, }, }, { category: "product_version", name: "freeradius-debuginfo-0:1.0.1-2.RHEL3.2.x86_64", product: { name: "freeradius-debuginfo-0:1.0.1-2.RHEL3.2.x86_64", product_id: "freeradius-debuginfo-0:1.0.1-2.RHEL3.2.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/freeradius-debuginfo@1.0.1-2.RHEL3.2?arch=x86_64", }, }, }, { category: "product_version", name: "freeradius-postgresql-0:1.0.1-3.RHEL4.3.x86_64", product: { name: "freeradius-postgresql-0:1.0.1-3.RHEL4.3.x86_64", product_id: "freeradius-postgresql-0:1.0.1-3.RHEL4.3.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/freeradius-postgresql@1.0.1-3.RHEL4.3?arch=x86_64", }, }, }, { category: "product_version", name: "freeradius-unixODBC-0:1.0.1-3.RHEL4.3.x86_64", product: { name: "freeradius-unixODBC-0:1.0.1-3.RHEL4.3.x86_64", product_id: "freeradius-unixODBC-0:1.0.1-3.RHEL4.3.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/freeradius-unixODBC@1.0.1-3.RHEL4.3?arch=x86_64", }, }, }, { category: "product_version", name: "freeradius-0:1.0.1-3.RHEL4.3.x86_64", product: { name: "freeradius-0:1.0.1-3.RHEL4.3.x86_64", product_id: "freeradius-0:1.0.1-3.RHEL4.3.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/freeradius@1.0.1-3.RHEL4.3?arch=x86_64", }, }, }, { category: "product_version", name: "freeradius-mysql-0:1.0.1-3.RHEL4.3.x86_64", product: { name: "freeradius-mysql-0:1.0.1-3.RHEL4.3.x86_64", product_id: "freeradius-mysql-0:1.0.1-3.RHEL4.3.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/freeradius-mysql@1.0.1-3.RHEL4.3?arch=x86_64", }, }, }, { category: "product_version", name: "freeradius-debuginfo-0:1.0.1-3.RHEL4.3.x86_64", product: { name: "freeradius-debuginfo-0:1.0.1-3.RHEL4.3.x86_64", product_id: "freeradius-debuginfo-0:1.0.1-3.RHEL4.3.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/freeradius-debuginfo@1.0.1-3.RHEL4.3?arch=x86_64", }, }, }, ], category: "architecture", name: "x86_64", }, { branches: [ { category: "product_version", name: "freeradius-0:1.0.1-2.RHEL3.2.i386", product: { name: "freeradius-0:1.0.1-2.RHEL3.2.i386", product_id: "freeradius-0:1.0.1-2.RHEL3.2.i386", product_identification_helper: { purl: "pkg:rpm/redhat/freeradius@1.0.1-2.RHEL3.2?arch=i386", }, }, }, { category: "product_version", name: "freeradius-debuginfo-0:1.0.1-2.RHEL3.2.i386", product: { name: "freeradius-debuginfo-0:1.0.1-2.RHEL3.2.i386", product_id: "freeradius-debuginfo-0:1.0.1-2.RHEL3.2.i386", product_identification_helper: { purl: "pkg:rpm/redhat/freeradius-debuginfo@1.0.1-2.RHEL3.2?arch=i386", }, }, }, { category: "product_version", name: "freeradius-postgresql-0:1.0.1-3.RHEL4.3.i386", product: { name: "freeradius-postgresql-0:1.0.1-3.RHEL4.3.i386", product_id: "freeradius-postgresql-0:1.0.1-3.RHEL4.3.i386", product_identification_helper: { purl: "pkg:rpm/redhat/freeradius-postgresql@1.0.1-3.RHEL4.3?arch=i386", }, }, }, { category: "product_version", name: "freeradius-unixODBC-0:1.0.1-3.RHEL4.3.i386", product: { name: "freeradius-unixODBC-0:1.0.1-3.RHEL4.3.i386", product_id: "freeradius-unixODBC-0:1.0.1-3.RHEL4.3.i386", product_identification_helper: { purl: "pkg:rpm/redhat/freeradius-unixODBC@1.0.1-3.RHEL4.3?arch=i386", }, }, }, { category: "product_version", name: "freeradius-0:1.0.1-3.RHEL4.3.i386", product: { name: "freeradius-0:1.0.1-3.RHEL4.3.i386", product_id: "freeradius-0:1.0.1-3.RHEL4.3.i386", product_identification_helper: { purl: "pkg:rpm/redhat/freeradius@1.0.1-3.RHEL4.3?arch=i386", }, }, }, { category: "product_version", name: "freeradius-mysql-0:1.0.1-3.RHEL4.3.i386", product: { name: "freeradius-mysql-0:1.0.1-3.RHEL4.3.i386", product_id: "freeradius-mysql-0:1.0.1-3.RHEL4.3.i386", product_identification_helper: { purl: "pkg:rpm/redhat/freeradius-mysql@1.0.1-3.RHEL4.3?arch=i386", }, }, }, { category: "product_version", name: "freeradius-debuginfo-0:1.0.1-3.RHEL4.3.i386", product: { name: "freeradius-debuginfo-0:1.0.1-3.RHEL4.3.i386", product_id: "freeradius-debuginfo-0:1.0.1-3.RHEL4.3.i386", product_identification_helper: { purl: "pkg:rpm/redhat/freeradius-debuginfo@1.0.1-3.RHEL4.3?arch=i386", }, }, }, ], category: "architecture", name: "i386", }, { branches: [ { category: "product_version", name: "freeradius-0:1.0.1-2.RHEL3.2.ppc", product: { name: "freeradius-0:1.0.1-2.RHEL3.2.ppc", product_id: "freeradius-0:1.0.1-2.RHEL3.2.ppc", product_identification_helper: { purl: "pkg:rpm/redhat/freeradius@1.0.1-2.RHEL3.2?arch=ppc", }, }, }, { category: "product_version", name: "freeradius-debuginfo-0:1.0.1-2.RHEL3.2.ppc", product: { name: "freeradius-debuginfo-0:1.0.1-2.RHEL3.2.ppc", product_id: "freeradius-debuginfo-0:1.0.1-2.RHEL3.2.ppc", product_identification_helper: { purl: "pkg:rpm/redhat/freeradius-debuginfo@1.0.1-2.RHEL3.2?arch=ppc", }, }, }, { category: "product_version", name: "freeradius-postgresql-0:1.0.1-3.RHEL4.3.ppc", product: { name: "freeradius-postgresql-0:1.0.1-3.RHEL4.3.ppc", product_id: "freeradius-postgresql-0:1.0.1-3.RHEL4.3.ppc", product_identification_helper: { purl: "pkg:rpm/redhat/freeradius-postgresql@1.0.1-3.RHEL4.3?arch=ppc", }, }, }, { category: "product_version", name: "freeradius-unixODBC-0:1.0.1-3.RHEL4.3.ppc", product: { name: "freeradius-unixODBC-0:1.0.1-3.RHEL4.3.ppc", product_id: "freeradius-unixODBC-0:1.0.1-3.RHEL4.3.ppc", product_identification_helper: { purl: "pkg:rpm/redhat/freeradius-unixODBC@1.0.1-3.RHEL4.3?arch=ppc", }, }, }, { category: "product_version", name: "freeradius-0:1.0.1-3.RHEL4.3.ppc", product: { name: "freeradius-0:1.0.1-3.RHEL4.3.ppc", product_id: "freeradius-0:1.0.1-3.RHEL4.3.ppc", product_identification_helper: { purl: "pkg:rpm/redhat/freeradius@1.0.1-3.RHEL4.3?arch=ppc", }, }, }, { category: "product_version", name: "freeradius-mysql-0:1.0.1-3.RHEL4.3.ppc", product: { name: "freeradius-mysql-0:1.0.1-3.RHEL4.3.ppc", product_id: "freeradius-mysql-0:1.0.1-3.RHEL4.3.ppc", product_identification_helper: { purl: "pkg:rpm/redhat/freeradius-mysql@1.0.1-3.RHEL4.3?arch=ppc", }, }, }, { category: "product_version", name: "freeradius-debuginfo-0:1.0.1-3.RHEL4.3.ppc", product: { name: "freeradius-debuginfo-0:1.0.1-3.RHEL4.3.ppc", product_id: "freeradius-debuginfo-0:1.0.1-3.RHEL4.3.ppc", product_identification_helper: { purl: "pkg:rpm/redhat/freeradius-debuginfo@1.0.1-3.RHEL4.3?arch=ppc", }, }, }, ], category: "architecture", name: "ppc", }, { branches: [ { category: "product_version", name: "freeradius-0:1.0.1-2.RHEL3.2.s390x", product: { name: "freeradius-0:1.0.1-2.RHEL3.2.s390x", product_id: "freeradius-0:1.0.1-2.RHEL3.2.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/freeradius@1.0.1-2.RHEL3.2?arch=s390x", }, }, }, { category: "product_version", name: "freeradius-debuginfo-0:1.0.1-2.RHEL3.2.s390x", product: { name: "freeradius-debuginfo-0:1.0.1-2.RHEL3.2.s390x", product_id: "freeradius-debuginfo-0:1.0.1-2.RHEL3.2.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/freeradius-debuginfo@1.0.1-2.RHEL3.2?arch=s390x", }, }, }, { category: "product_version", name: "freeradius-postgresql-0:1.0.1-3.RHEL4.3.s390x", product: { name: "freeradius-postgresql-0:1.0.1-3.RHEL4.3.s390x", product_id: "freeradius-postgresql-0:1.0.1-3.RHEL4.3.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/freeradius-postgresql@1.0.1-3.RHEL4.3?arch=s390x", }, }, }, { category: "product_version", name: "freeradius-unixODBC-0:1.0.1-3.RHEL4.3.s390x", product: { name: "freeradius-unixODBC-0:1.0.1-3.RHEL4.3.s390x", product_id: "freeradius-unixODBC-0:1.0.1-3.RHEL4.3.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/freeradius-unixODBC@1.0.1-3.RHEL4.3?arch=s390x", }, }, }, { category: "product_version", name: "freeradius-0:1.0.1-3.RHEL4.3.s390x", product: { name: "freeradius-0:1.0.1-3.RHEL4.3.s390x", product_id: "freeradius-0:1.0.1-3.RHEL4.3.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/freeradius@1.0.1-3.RHEL4.3?arch=s390x", }, }, }, { category: "product_version", name: "freeradius-mysql-0:1.0.1-3.RHEL4.3.s390x", product: { name: "freeradius-mysql-0:1.0.1-3.RHEL4.3.s390x", product_id: "freeradius-mysql-0:1.0.1-3.RHEL4.3.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/freeradius-mysql@1.0.1-3.RHEL4.3?arch=s390x", }, }, }, { category: "product_version", name: "freeradius-debuginfo-0:1.0.1-3.RHEL4.3.s390x", product: { name: "freeradius-debuginfo-0:1.0.1-3.RHEL4.3.s390x", product_id: "freeradius-debuginfo-0:1.0.1-3.RHEL4.3.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/freeradius-debuginfo@1.0.1-3.RHEL4.3?arch=s390x", }, }, }, ], category: "architecture", name: "s390x", }, { branches: [ { category: "product_version", name: "freeradius-0:1.0.1-2.RHEL3.2.s390", product: { name: "freeradius-0:1.0.1-2.RHEL3.2.s390", product_id: "freeradius-0:1.0.1-2.RHEL3.2.s390", product_identification_helper: { purl: "pkg:rpm/redhat/freeradius@1.0.1-2.RHEL3.2?arch=s390", }, }, }, { category: "product_version", name: "freeradius-debuginfo-0:1.0.1-2.RHEL3.2.s390", product: { name: "freeradius-debuginfo-0:1.0.1-2.RHEL3.2.s390", product_id: "freeradius-debuginfo-0:1.0.1-2.RHEL3.2.s390", product_identification_helper: { purl: "pkg:rpm/redhat/freeradius-debuginfo@1.0.1-2.RHEL3.2?arch=s390", }, }, }, { category: "product_version", name: "freeradius-postgresql-0:1.0.1-3.RHEL4.3.s390", product: { name: "freeradius-postgresql-0:1.0.1-3.RHEL4.3.s390", product_id: "freeradius-postgresql-0:1.0.1-3.RHEL4.3.s390", product_identification_helper: { purl: "pkg:rpm/redhat/freeradius-postgresql@1.0.1-3.RHEL4.3?arch=s390", }, }, }, { category: "product_version", name: "freeradius-unixODBC-0:1.0.1-3.RHEL4.3.s390", product: { name: "freeradius-unixODBC-0:1.0.1-3.RHEL4.3.s390", product_id: "freeradius-unixODBC-0:1.0.1-3.RHEL4.3.s390", product_identification_helper: { purl: "pkg:rpm/redhat/freeradius-unixODBC@1.0.1-3.RHEL4.3?arch=s390", }, }, }, { category: "product_version", name: "freeradius-0:1.0.1-3.RHEL4.3.s390", product: { name: "freeradius-0:1.0.1-3.RHEL4.3.s390", product_id: "freeradius-0:1.0.1-3.RHEL4.3.s390", product_identification_helper: { purl: "pkg:rpm/redhat/freeradius@1.0.1-3.RHEL4.3?arch=s390", }, }, }, { category: "product_version", name: "freeradius-mysql-0:1.0.1-3.RHEL4.3.s390", product: { name: "freeradius-mysql-0:1.0.1-3.RHEL4.3.s390", product_id: "freeradius-mysql-0:1.0.1-3.RHEL4.3.s390", product_identification_helper: { purl: "pkg:rpm/redhat/freeradius-mysql@1.0.1-3.RHEL4.3?arch=s390", }, }, }, { category: "product_version", name: "freeradius-debuginfo-0:1.0.1-3.RHEL4.3.s390", product: { name: "freeradius-debuginfo-0:1.0.1-3.RHEL4.3.s390", product_id: "freeradius-debuginfo-0:1.0.1-3.RHEL4.3.s390", product_identification_helper: { purl: "pkg:rpm/redhat/freeradius-debuginfo@1.0.1-3.RHEL4.3?arch=s390", }, }, }, ], category: "architecture", name: "s390", }, ], category: "vendor", name: "Red Hat", }, ], relationships: [ { category: "default_component_of", full_product_name: { name: "freeradius-0:1.0.1-2.RHEL3.2.i386 as a component of Red Hat Enterprise Linux AS version 3", product_id: "3AS:freeradius-0:1.0.1-2.RHEL3.2.i386", }, product_reference: "freeradius-0:1.0.1-2.RHEL3.2.i386", relates_to_product_reference: "3AS", }, { category: "default_component_of", full_product_name: { name: "freeradius-0:1.0.1-2.RHEL3.2.ia64 as a component of Red Hat Enterprise Linux AS version 3", product_id: "3AS:freeradius-0:1.0.1-2.RHEL3.2.ia64", }, product_reference: "freeradius-0:1.0.1-2.RHEL3.2.ia64", relates_to_product_reference: "3AS", }, { category: "default_component_of", full_product_name: { name: "freeradius-0:1.0.1-2.RHEL3.2.ppc as a component of Red Hat Enterprise Linux AS version 3", product_id: "3AS:freeradius-0:1.0.1-2.RHEL3.2.ppc", }, product_reference: "freeradius-0:1.0.1-2.RHEL3.2.ppc", relates_to_product_reference: "3AS", }, { category: "default_component_of", full_product_name: { name: "freeradius-0:1.0.1-2.RHEL3.2.s390 as a component of Red Hat Enterprise Linux AS version 3", product_id: "3AS:freeradius-0:1.0.1-2.RHEL3.2.s390", }, product_reference: "freeradius-0:1.0.1-2.RHEL3.2.s390", relates_to_product_reference: "3AS", }, { category: "default_component_of", full_product_name: { name: "freeradius-0:1.0.1-2.RHEL3.2.s390x as a component of Red Hat Enterprise Linux AS version 3", product_id: "3AS:freeradius-0:1.0.1-2.RHEL3.2.s390x", }, product_reference: "freeradius-0:1.0.1-2.RHEL3.2.s390x", relates_to_product_reference: "3AS", }, { category: "default_component_of", full_product_name: { name: "freeradius-0:1.0.1-2.RHEL3.2.src as a component of Red Hat Enterprise Linux AS version 3", product_id: "3AS:freeradius-0:1.0.1-2.RHEL3.2.src", }, product_reference: "freeradius-0:1.0.1-2.RHEL3.2.src", relates_to_product_reference: "3AS", }, { category: "default_component_of", full_product_name: { name: "freeradius-0:1.0.1-2.RHEL3.2.x86_64 as a component of Red Hat Enterprise Linux AS version 3", product_id: "3AS:freeradius-0:1.0.1-2.RHEL3.2.x86_64", }, product_reference: "freeradius-0:1.0.1-2.RHEL3.2.x86_64", relates_to_product_reference: "3AS", }, { category: "default_component_of", full_product_name: { name: "freeradius-debuginfo-0:1.0.1-2.RHEL3.2.i386 as a component of Red Hat Enterprise Linux AS version 3", product_id: "3AS:freeradius-debuginfo-0:1.0.1-2.RHEL3.2.i386", }, product_reference: "freeradius-debuginfo-0:1.0.1-2.RHEL3.2.i386", relates_to_product_reference: "3AS", }, { category: "default_component_of", full_product_name: { name: "freeradius-debuginfo-0:1.0.1-2.RHEL3.2.ia64 as a component of Red Hat Enterprise Linux AS version 3", product_id: "3AS:freeradius-debuginfo-0:1.0.1-2.RHEL3.2.ia64", }, product_reference: "freeradius-debuginfo-0:1.0.1-2.RHEL3.2.ia64", relates_to_product_reference: "3AS", }, { category: "default_component_of", full_product_name: { name: "freeradius-debuginfo-0:1.0.1-2.RHEL3.2.ppc as a component of Red Hat Enterprise Linux AS version 3", product_id: "3AS:freeradius-debuginfo-0:1.0.1-2.RHEL3.2.ppc", }, product_reference: "freeradius-debuginfo-0:1.0.1-2.RHEL3.2.ppc", relates_to_product_reference: "3AS", }, { category: "default_component_of", full_product_name: { name: "freeradius-debuginfo-0:1.0.1-2.RHEL3.2.s390 as a component of Red Hat Enterprise Linux AS version 3", product_id: "3AS:freeradius-debuginfo-0:1.0.1-2.RHEL3.2.s390", }, product_reference: "freeradius-debuginfo-0:1.0.1-2.RHEL3.2.s390", relates_to_product_reference: "3AS", }, { category: "default_component_of", full_product_name: { name: "freeradius-debuginfo-0:1.0.1-2.RHEL3.2.s390x as a component of Red Hat Enterprise Linux AS version 3", product_id: "3AS:freeradius-debuginfo-0:1.0.1-2.RHEL3.2.s390x", }, product_reference: "freeradius-debuginfo-0:1.0.1-2.RHEL3.2.s390x", relates_to_product_reference: "3AS", }, { category: "default_component_of", full_product_name: { name: "freeradius-debuginfo-0:1.0.1-2.RHEL3.2.x86_64 as a component of Red Hat Enterprise Linux AS version 3", product_id: "3AS:freeradius-debuginfo-0:1.0.1-2.RHEL3.2.x86_64", }, product_reference: "freeradius-debuginfo-0:1.0.1-2.RHEL3.2.x86_64", relates_to_product_reference: "3AS", }, { category: "default_component_of", full_product_name: { name: "freeradius-0:1.0.1-2.RHEL3.2.i386 as a component of Red Hat Enterprise Linux ES version 3", product_id: "3ES:freeradius-0:1.0.1-2.RHEL3.2.i386", }, product_reference: "freeradius-0:1.0.1-2.RHEL3.2.i386", relates_to_product_reference: "3ES", }, { category: "default_component_of", full_product_name: { name: "freeradius-0:1.0.1-2.RHEL3.2.ia64 as a component of Red Hat Enterprise Linux ES version 3", product_id: "3ES:freeradius-0:1.0.1-2.RHEL3.2.ia64", }, product_reference: "freeradius-0:1.0.1-2.RHEL3.2.ia64", relates_to_product_reference: "3ES", }, { category: "default_component_of", full_product_name: { name: "freeradius-0:1.0.1-2.RHEL3.2.ppc as a component of Red Hat Enterprise Linux ES version 3", product_id: "3ES:freeradius-0:1.0.1-2.RHEL3.2.ppc", }, product_reference: "freeradius-0:1.0.1-2.RHEL3.2.ppc", relates_to_product_reference: "3ES", }, { category: "default_component_of", full_product_name: { name: "freeradius-0:1.0.1-2.RHEL3.2.s390 as a component of Red Hat Enterprise Linux ES version 3", product_id: "3ES:freeradius-0:1.0.1-2.RHEL3.2.s390", }, product_reference: "freeradius-0:1.0.1-2.RHEL3.2.s390", relates_to_product_reference: "3ES", }, { category: "default_component_of", full_product_name: { name: "freeradius-0:1.0.1-2.RHEL3.2.s390x as a component of Red Hat Enterprise Linux ES version 3", product_id: "3ES:freeradius-0:1.0.1-2.RHEL3.2.s390x", }, product_reference: "freeradius-0:1.0.1-2.RHEL3.2.s390x", relates_to_product_reference: "3ES", }, { category: "default_component_of", full_product_name: { name: "freeradius-0:1.0.1-2.RHEL3.2.src as a component of Red Hat Enterprise Linux ES version 3", product_id: "3ES:freeradius-0:1.0.1-2.RHEL3.2.src", }, product_reference: "freeradius-0:1.0.1-2.RHEL3.2.src", relates_to_product_reference: "3ES", }, { category: "default_component_of", full_product_name: { name: "freeradius-0:1.0.1-2.RHEL3.2.x86_64 as a component of Red Hat Enterprise Linux ES version 3", product_id: "3ES:freeradius-0:1.0.1-2.RHEL3.2.x86_64", }, product_reference: "freeradius-0:1.0.1-2.RHEL3.2.x86_64", relates_to_product_reference: "3ES", }, { category: "default_component_of", full_product_name: { name: "freeradius-debuginfo-0:1.0.1-2.RHEL3.2.i386 as a component of Red Hat Enterprise Linux ES version 3", product_id: "3ES:freeradius-debuginfo-0:1.0.1-2.RHEL3.2.i386", }, product_reference: "freeradius-debuginfo-0:1.0.1-2.RHEL3.2.i386", relates_to_product_reference: "3ES", }, { category: "default_component_of", full_product_name: { name: "freeradius-debuginfo-0:1.0.1-2.RHEL3.2.ia64 as a component of Red Hat Enterprise Linux ES version 3", product_id: "3ES:freeradius-debuginfo-0:1.0.1-2.RHEL3.2.ia64", }, product_reference: "freeradius-debuginfo-0:1.0.1-2.RHEL3.2.ia64", relates_to_product_reference: "3ES", }, { category: "default_component_of", full_product_name: { name: "freeradius-debuginfo-0:1.0.1-2.RHEL3.2.ppc as a component of Red Hat Enterprise Linux ES version 3", product_id: "3ES:freeradius-debuginfo-0:1.0.1-2.RHEL3.2.ppc", }, product_reference: "freeradius-debuginfo-0:1.0.1-2.RHEL3.2.ppc", relates_to_product_reference: "3ES", }, { category: "default_component_of", full_product_name: { name: "freeradius-debuginfo-0:1.0.1-2.RHEL3.2.s390 as a component of Red Hat Enterprise Linux ES version 3", product_id: "3ES:freeradius-debuginfo-0:1.0.1-2.RHEL3.2.s390", }, product_reference: "freeradius-debuginfo-0:1.0.1-2.RHEL3.2.s390", relates_to_product_reference: "3ES", }, { category: "default_component_of", full_product_name: { name: "freeradius-debuginfo-0:1.0.1-2.RHEL3.2.s390x as a component of Red Hat Enterprise Linux ES version 3", product_id: "3ES:freeradius-debuginfo-0:1.0.1-2.RHEL3.2.s390x", }, product_reference: "freeradius-debuginfo-0:1.0.1-2.RHEL3.2.s390x", relates_to_product_reference: "3ES", }, { category: "default_component_of", full_product_name: { name: "freeradius-debuginfo-0:1.0.1-2.RHEL3.2.x86_64 as a component of Red Hat Enterprise Linux ES version 3", product_id: "3ES:freeradius-debuginfo-0:1.0.1-2.RHEL3.2.x86_64", }, product_reference: "freeradius-debuginfo-0:1.0.1-2.RHEL3.2.x86_64", relates_to_product_reference: "3ES", }, { category: "default_component_of", full_product_name: { name: "freeradius-0:1.0.1-3.RHEL4.3.i386 as a component of Red Hat Enterprise Linux AS version 4", product_id: "4AS:freeradius-0:1.0.1-3.RHEL4.3.i386", }, product_reference: "freeradius-0:1.0.1-3.RHEL4.3.i386", relates_to_product_reference: "4AS", }, { category: "default_component_of", full_product_name: { name: "freeradius-0:1.0.1-3.RHEL4.3.ia64 as a component of Red Hat Enterprise Linux AS version 4", product_id: "4AS:freeradius-0:1.0.1-3.RHEL4.3.ia64", }, product_reference: "freeradius-0:1.0.1-3.RHEL4.3.ia64", relates_to_product_reference: "4AS", }, { category: "default_component_of", full_product_name: { name: "freeradius-0:1.0.1-3.RHEL4.3.ppc as a component of Red Hat Enterprise Linux AS version 4", product_id: "4AS:freeradius-0:1.0.1-3.RHEL4.3.ppc", }, product_reference: "freeradius-0:1.0.1-3.RHEL4.3.ppc", relates_to_product_reference: "4AS", }, { category: "default_component_of", full_product_name: { name: "freeradius-0:1.0.1-3.RHEL4.3.s390 as a component of Red Hat Enterprise Linux AS version 4", product_id: "4AS:freeradius-0:1.0.1-3.RHEL4.3.s390", }, product_reference: "freeradius-0:1.0.1-3.RHEL4.3.s390", relates_to_product_reference: "4AS", }, { category: "default_component_of", full_product_name: { name: "freeradius-0:1.0.1-3.RHEL4.3.s390x as a component of Red Hat Enterprise Linux AS version 4", product_id: "4AS:freeradius-0:1.0.1-3.RHEL4.3.s390x", }, product_reference: "freeradius-0:1.0.1-3.RHEL4.3.s390x", relates_to_product_reference: "4AS", }, { category: "default_component_of", full_product_name: { name: "freeradius-0:1.0.1-3.RHEL4.3.src as a component of Red Hat Enterprise Linux AS version 4", product_id: "4AS:freeradius-0:1.0.1-3.RHEL4.3.src", }, product_reference: "freeradius-0:1.0.1-3.RHEL4.3.src", relates_to_product_reference: "4AS", }, { category: "default_component_of", full_product_name: { name: "freeradius-0:1.0.1-3.RHEL4.3.x86_64 as a component of Red Hat Enterprise Linux AS version 4", product_id: "4AS:freeradius-0:1.0.1-3.RHEL4.3.x86_64", }, product_reference: "freeradius-0:1.0.1-3.RHEL4.3.x86_64", relates_to_product_reference: "4AS", }, { category: "default_component_of", full_product_name: { name: "freeradius-debuginfo-0:1.0.1-3.RHEL4.3.i386 as a component of Red Hat Enterprise Linux AS version 4", product_id: "4AS:freeradius-debuginfo-0:1.0.1-3.RHEL4.3.i386", }, product_reference: "freeradius-debuginfo-0:1.0.1-3.RHEL4.3.i386", relates_to_product_reference: "4AS", }, { category: "default_component_of", full_product_name: { name: "freeradius-debuginfo-0:1.0.1-3.RHEL4.3.ia64 as a component of Red Hat Enterprise Linux AS version 4", product_id: "4AS:freeradius-debuginfo-0:1.0.1-3.RHEL4.3.ia64", }, product_reference: "freeradius-debuginfo-0:1.0.1-3.RHEL4.3.ia64", relates_to_product_reference: "4AS", }, { category: "default_component_of", full_product_name: { name: "freeradius-debuginfo-0:1.0.1-3.RHEL4.3.ppc as a component of Red Hat Enterprise Linux AS version 4", product_id: "4AS:freeradius-debuginfo-0:1.0.1-3.RHEL4.3.ppc", }, product_reference: "freeradius-debuginfo-0:1.0.1-3.RHEL4.3.ppc", relates_to_product_reference: "4AS", }, { category: "default_component_of", full_product_name: { name: "freeradius-debuginfo-0:1.0.1-3.RHEL4.3.s390 as a component of Red Hat Enterprise Linux AS version 4", product_id: "4AS:freeradius-debuginfo-0:1.0.1-3.RHEL4.3.s390", }, product_reference: "freeradius-debuginfo-0:1.0.1-3.RHEL4.3.s390", relates_to_product_reference: "4AS", }, { category: "default_component_of", full_product_name: { name: "freeradius-debuginfo-0:1.0.1-3.RHEL4.3.s390x as a component of Red Hat Enterprise Linux AS version 4", product_id: "4AS:freeradius-debuginfo-0:1.0.1-3.RHEL4.3.s390x", }, product_reference: "freeradius-debuginfo-0:1.0.1-3.RHEL4.3.s390x", relates_to_product_reference: "4AS", }, { category: "default_component_of", full_product_name: { name: "freeradius-debuginfo-0:1.0.1-3.RHEL4.3.x86_64 as a component of Red Hat Enterprise Linux AS version 4", product_id: "4AS:freeradius-debuginfo-0:1.0.1-3.RHEL4.3.x86_64", }, product_reference: "freeradius-debuginfo-0:1.0.1-3.RHEL4.3.x86_64", relates_to_product_reference: "4AS", }, { category: "default_component_of", full_product_name: { name: "freeradius-mysql-0:1.0.1-3.RHEL4.3.i386 as a component of Red Hat Enterprise Linux AS version 4", product_id: "4AS:freeradius-mysql-0:1.0.1-3.RHEL4.3.i386", }, product_reference: "freeradius-mysql-0:1.0.1-3.RHEL4.3.i386", relates_to_product_reference: "4AS", }, { category: "default_component_of", full_product_name: { name: "freeradius-mysql-0:1.0.1-3.RHEL4.3.ia64 as a component of Red Hat Enterprise Linux AS version 4", product_id: "4AS:freeradius-mysql-0:1.0.1-3.RHEL4.3.ia64", }, product_reference: "freeradius-mysql-0:1.0.1-3.RHEL4.3.ia64", relates_to_product_reference: "4AS", }, { category: "default_component_of", full_product_name: { name: "freeradius-mysql-0:1.0.1-3.RHEL4.3.ppc as a component of Red Hat Enterprise Linux AS version 4", product_id: "4AS:freeradius-mysql-0:1.0.1-3.RHEL4.3.ppc", }, product_reference: "freeradius-mysql-0:1.0.1-3.RHEL4.3.ppc", relates_to_product_reference: "4AS", }, { category: "default_component_of", full_product_name: { name: "freeradius-mysql-0:1.0.1-3.RHEL4.3.s390 as a component of Red Hat Enterprise Linux AS version 4", product_id: "4AS:freeradius-mysql-0:1.0.1-3.RHEL4.3.s390", }, product_reference: "freeradius-mysql-0:1.0.1-3.RHEL4.3.s390", relates_to_product_reference: "4AS", }, { category: "default_component_of", full_product_name: { name: "freeradius-mysql-0:1.0.1-3.RHEL4.3.s390x as a component of Red Hat Enterprise Linux AS version 4", product_id: "4AS:freeradius-mysql-0:1.0.1-3.RHEL4.3.s390x", }, product_reference: "freeradius-mysql-0:1.0.1-3.RHEL4.3.s390x", relates_to_product_reference: "4AS", }, { category: "default_component_of", full_product_name: { name: "freeradius-mysql-0:1.0.1-3.RHEL4.3.x86_64 as a component of Red Hat Enterprise Linux AS version 4", product_id: "4AS:freeradius-mysql-0:1.0.1-3.RHEL4.3.x86_64", }, product_reference: "freeradius-mysql-0:1.0.1-3.RHEL4.3.x86_64", relates_to_product_reference: "4AS", }, { category: "default_component_of", full_product_name: { name: "freeradius-postgresql-0:1.0.1-3.RHEL4.3.i386 as a component of Red Hat Enterprise Linux AS version 4", product_id: "4AS:freeradius-postgresql-0:1.0.1-3.RHEL4.3.i386", }, product_reference: "freeradius-postgresql-0:1.0.1-3.RHEL4.3.i386", relates_to_product_reference: "4AS", }, { category: "default_component_of", full_product_name: { name: "freeradius-postgresql-0:1.0.1-3.RHEL4.3.ia64 as a component of Red Hat Enterprise Linux AS version 4", product_id: "4AS:freeradius-postgresql-0:1.0.1-3.RHEL4.3.ia64", }, product_reference: "freeradius-postgresql-0:1.0.1-3.RHEL4.3.ia64", relates_to_product_reference: "4AS", }, { category: "default_component_of", full_product_name: { name: "freeradius-postgresql-0:1.0.1-3.RHEL4.3.ppc as a component of Red Hat Enterprise Linux AS version 4", product_id: "4AS:freeradius-postgresql-0:1.0.1-3.RHEL4.3.ppc", }, product_reference: "freeradius-postgresql-0:1.0.1-3.RHEL4.3.ppc", relates_to_product_reference: "4AS", }, { category: "default_component_of", full_product_name: { name: "freeradius-postgresql-0:1.0.1-3.RHEL4.3.s390 as a component of Red Hat Enterprise Linux AS version 4", product_id: "4AS:freeradius-postgresql-0:1.0.1-3.RHEL4.3.s390", }, product_reference: "freeradius-postgresql-0:1.0.1-3.RHEL4.3.s390", relates_to_product_reference: "4AS", }, { category: "default_component_of", full_product_name: { name: "freeradius-postgresql-0:1.0.1-3.RHEL4.3.s390x as a component of Red Hat Enterprise Linux AS version 4", product_id: "4AS:freeradius-postgresql-0:1.0.1-3.RHEL4.3.s390x", }, product_reference: "freeradius-postgresql-0:1.0.1-3.RHEL4.3.s390x", relates_to_product_reference: "4AS", }, { category: "default_component_of", full_product_name: { name: "freeradius-postgresql-0:1.0.1-3.RHEL4.3.x86_64 as a component of Red Hat Enterprise Linux AS version 4", product_id: "4AS:freeradius-postgresql-0:1.0.1-3.RHEL4.3.x86_64", }, product_reference: "freeradius-postgresql-0:1.0.1-3.RHEL4.3.x86_64", relates_to_product_reference: "4AS", }, { category: "default_component_of", full_product_name: { name: "freeradius-unixODBC-0:1.0.1-3.RHEL4.3.i386 as a component of Red Hat Enterprise Linux AS version 4", product_id: "4AS:freeradius-unixODBC-0:1.0.1-3.RHEL4.3.i386", }, product_reference: "freeradius-unixODBC-0:1.0.1-3.RHEL4.3.i386", relates_to_product_reference: "4AS", }, { category: "default_component_of", full_product_name: { name: "freeradius-unixODBC-0:1.0.1-3.RHEL4.3.ia64 as a component of Red Hat Enterprise Linux AS version 4", product_id: "4AS:freeradius-unixODBC-0:1.0.1-3.RHEL4.3.ia64", }, product_reference: "freeradius-unixODBC-0:1.0.1-3.RHEL4.3.ia64", relates_to_product_reference: "4AS", }, { category: "default_component_of", full_product_name: { name: "freeradius-unixODBC-0:1.0.1-3.RHEL4.3.ppc as a component of Red Hat Enterprise Linux AS version 4", product_id: "4AS:freeradius-unixODBC-0:1.0.1-3.RHEL4.3.ppc", }, product_reference: "freeradius-unixODBC-0:1.0.1-3.RHEL4.3.ppc", relates_to_product_reference: "4AS", }, { category: "default_component_of", full_product_name: { name: "freeradius-unixODBC-0:1.0.1-3.RHEL4.3.s390 as a component of Red Hat Enterprise Linux AS version 4", product_id: "4AS:freeradius-unixODBC-0:1.0.1-3.RHEL4.3.s390", }, product_reference: "freeradius-unixODBC-0:1.0.1-3.RHEL4.3.s390", relates_to_product_reference: "4AS", }, { category: "default_component_of", full_product_name: { name: "freeradius-unixODBC-0:1.0.1-3.RHEL4.3.s390x as a component of Red Hat Enterprise Linux AS version 4", product_id: "4AS:freeradius-unixODBC-0:1.0.1-3.RHEL4.3.s390x", }, product_reference: "freeradius-unixODBC-0:1.0.1-3.RHEL4.3.s390x", relates_to_product_reference: "4AS", }, { category: "default_component_of", full_product_name: { name: "freeradius-unixODBC-0:1.0.1-3.RHEL4.3.x86_64 as a component of Red Hat Enterprise Linux AS version 4", product_id: "4AS:freeradius-unixODBC-0:1.0.1-3.RHEL4.3.x86_64", }, product_reference: "freeradius-unixODBC-0:1.0.1-3.RHEL4.3.x86_64", relates_to_product_reference: "4AS", }, { category: "default_component_of", full_product_name: { name: "freeradius-0:1.0.1-3.RHEL4.3.i386 as a component of Red Hat Enterprise Linux ES version 4", product_id: "4ES:freeradius-0:1.0.1-3.RHEL4.3.i386", }, product_reference: "freeradius-0:1.0.1-3.RHEL4.3.i386", relates_to_product_reference: "4ES", }, { category: "default_component_of", full_product_name: { name: "freeradius-0:1.0.1-3.RHEL4.3.ia64 as a component of Red Hat Enterprise Linux ES version 4", product_id: "4ES:freeradius-0:1.0.1-3.RHEL4.3.ia64", }, product_reference: "freeradius-0:1.0.1-3.RHEL4.3.ia64", relates_to_product_reference: "4ES", }, { category: "default_component_of", full_product_name: { name: "freeradius-0:1.0.1-3.RHEL4.3.ppc as a component of Red Hat Enterprise Linux ES version 4", product_id: "4ES:freeradius-0:1.0.1-3.RHEL4.3.ppc", }, product_reference: "freeradius-0:1.0.1-3.RHEL4.3.ppc", relates_to_product_reference: "4ES", }, { category: "default_component_of", full_product_name: { name: "freeradius-0:1.0.1-3.RHEL4.3.s390 as a component of Red Hat Enterprise Linux ES version 4", product_id: "4ES:freeradius-0:1.0.1-3.RHEL4.3.s390", }, product_reference: "freeradius-0:1.0.1-3.RHEL4.3.s390", relates_to_product_reference: "4ES", }, { category: "default_component_of", full_product_name: { name: "freeradius-0:1.0.1-3.RHEL4.3.s390x as a component of Red Hat Enterprise Linux ES version 4", product_id: "4ES:freeradius-0:1.0.1-3.RHEL4.3.s390x", }, product_reference: "freeradius-0:1.0.1-3.RHEL4.3.s390x", relates_to_product_reference: "4ES", }, { category: "default_component_of", full_product_name: { name: "freeradius-0:1.0.1-3.RHEL4.3.src as a component of Red Hat Enterprise Linux ES version 4", product_id: "4ES:freeradius-0:1.0.1-3.RHEL4.3.src", }, product_reference: "freeradius-0:1.0.1-3.RHEL4.3.src", relates_to_product_reference: "4ES", }, { category: "default_component_of", full_product_name: { name: "freeradius-0:1.0.1-3.RHEL4.3.x86_64 as a component of Red Hat Enterprise Linux ES version 4", product_id: "4ES:freeradius-0:1.0.1-3.RHEL4.3.x86_64", }, product_reference: "freeradius-0:1.0.1-3.RHEL4.3.x86_64", relates_to_product_reference: "4ES", }, { category: "default_component_of", full_product_name: { name: "freeradius-debuginfo-0:1.0.1-3.RHEL4.3.i386 as a component of Red Hat Enterprise Linux ES version 4", product_id: "4ES:freeradius-debuginfo-0:1.0.1-3.RHEL4.3.i386", }, product_reference: "freeradius-debuginfo-0:1.0.1-3.RHEL4.3.i386", relates_to_product_reference: "4ES", }, { category: "default_component_of", full_product_name: { name: "freeradius-debuginfo-0:1.0.1-3.RHEL4.3.ia64 as a component of Red Hat Enterprise Linux ES version 4", product_id: "4ES:freeradius-debuginfo-0:1.0.1-3.RHEL4.3.ia64", }, product_reference: "freeradius-debuginfo-0:1.0.1-3.RHEL4.3.ia64", relates_to_product_reference: "4ES", }, { category: "default_component_of", full_product_name: { name: "freeradius-debuginfo-0:1.0.1-3.RHEL4.3.ppc as a component of Red Hat Enterprise Linux ES version 4", product_id: "4ES:freeradius-debuginfo-0:1.0.1-3.RHEL4.3.ppc", }, product_reference: "freeradius-debuginfo-0:1.0.1-3.RHEL4.3.ppc", relates_to_product_reference: "4ES", }, { category: "default_component_of", full_product_name: { name: "freeradius-debuginfo-0:1.0.1-3.RHEL4.3.s390 as a component of Red Hat Enterprise Linux ES version 4", product_id: "4ES:freeradius-debuginfo-0:1.0.1-3.RHEL4.3.s390", }, product_reference: "freeradius-debuginfo-0:1.0.1-3.RHEL4.3.s390", relates_to_product_reference: "4ES", }, { category: "default_component_of", full_product_name: { name: "freeradius-debuginfo-0:1.0.1-3.RHEL4.3.s390x as a component of Red Hat Enterprise Linux ES version 4", product_id: "4ES:freeradius-debuginfo-0:1.0.1-3.RHEL4.3.s390x", }, product_reference: "freeradius-debuginfo-0:1.0.1-3.RHEL4.3.s390x", relates_to_product_reference: "4ES", }, { category: "default_component_of", full_product_name: { name: "freeradius-debuginfo-0:1.0.1-3.RHEL4.3.x86_64 as a component of Red Hat Enterprise Linux ES version 4", product_id: "4ES:freeradius-debuginfo-0:1.0.1-3.RHEL4.3.x86_64", }, product_reference: "freeradius-debuginfo-0:1.0.1-3.RHEL4.3.x86_64", relates_to_product_reference: "4ES", }, { category: "default_component_of", full_product_name: { name: "freeradius-mysql-0:1.0.1-3.RHEL4.3.i386 as a component of Red Hat Enterprise Linux ES version 4", product_id: "4ES:freeradius-mysql-0:1.0.1-3.RHEL4.3.i386", }, product_reference: "freeradius-mysql-0:1.0.1-3.RHEL4.3.i386", relates_to_product_reference: "4ES", }, { category: "default_component_of", full_product_name: { name: "freeradius-mysql-0:1.0.1-3.RHEL4.3.ia64 as a component of Red Hat Enterprise Linux ES version 4", product_id: "4ES:freeradius-mysql-0:1.0.1-3.RHEL4.3.ia64", }, product_reference: "freeradius-mysql-0:1.0.1-3.RHEL4.3.ia64", relates_to_product_reference: "4ES", }, { category: "default_component_of", full_product_name: { name: "freeradius-mysql-0:1.0.1-3.RHEL4.3.ppc as a component of Red Hat Enterprise Linux ES version 4", product_id: "4ES:freeradius-mysql-0:1.0.1-3.RHEL4.3.ppc", }, product_reference: "freeradius-mysql-0:1.0.1-3.RHEL4.3.ppc", relates_to_product_reference: "4ES", }, { category: "default_component_of", full_product_name: { name: "freeradius-mysql-0:1.0.1-3.RHEL4.3.s390 as a component of Red Hat Enterprise Linux ES version 4", product_id: "4ES:freeradius-mysql-0:1.0.1-3.RHEL4.3.s390", }, product_reference: "freeradius-mysql-0:1.0.1-3.RHEL4.3.s390", relates_to_product_reference: "4ES", }, { category: "default_component_of", full_product_name: { name: "freeradius-mysql-0:1.0.1-3.RHEL4.3.s390x as a component of Red Hat Enterprise Linux ES version 4", product_id: "4ES:freeradius-mysql-0:1.0.1-3.RHEL4.3.s390x", }, product_reference: "freeradius-mysql-0:1.0.1-3.RHEL4.3.s390x", relates_to_product_reference: "4ES", }, { category: "default_component_of", full_product_name: { name: "freeradius-mysql-0:1.0.1-3.RHEL4.3.x86_64 as a component of Red Hat Enterprise Linux ES version 4", product_id: "4ES:freeradius-mysql-0:1.0.1-3.RHEL4.3.x86_64", }, product_reference: "freeradius-mysql-0:1.0.1-3.RHEL4.3.x86_64", relates_to_product_reference: "4ES", }, { category: "default_component_of", full_product_name: { name: "freeradius-postgresql-0:1.0.1-3.RHEL4.3.i386 as a component of Red Hat Enterprise Linux ES version 4", product_id: "4ES:freeradius-postgresql-0:1.0.1-3.RHEL4.3.i386", }, product_reference: "freeradius-postgresql-0:1.0.1-3.RHEL4.3.i386", relates_to_product_reference: "4ES", }, { category: "default_component_of", full_product_name: { name: "freeradius-postgresql-0:1.0.1-3.RHEL4.3.ia64 as a component of Red Hat Enterprise Linux ES version 4", product_id: "4ES:freeradius-postgresql-0:1.0.1-3.RHEL4.3.ia64", }, product_reference: "freeradius-postgresql-0:1.0.1-3.RHEL4.3.ia64", relates_to_product_reference: "4ES", }, { category: "default_component_of", full_product_name: { name: "freeradius-postgresql-0:1.0.1-3.RHEL4.3.ppc as a component of Red Hat Enterprise Linux ES version 4", product_id: "4ES:freeradius-postgresql-0:1.0.1-3.RHEL4.3.ppc", }, product_reference: "freeradius-postgresql-0:1.0.1-3.RHEL4.3.ppc", relates_to_product_reference: "4ES", }, { category: "default_component_of", full_product_name: { name: "freeradius-postgresql-0:1.0.1-3.RHEL4.3.s390 as a component of Red Hat Enterprise Linux ES version 4", product_id: "4ES:freeradius-postgresql-0:1.0.1-3.RHEL4.3.s390", }, product_reference: "freeradius-postgresql-0:1.0.1-3.RHEL4.3.s390", relates_to_product_reference: "4ES", }, { category: "default_component_of", full_product_name: { name: "freeradius-postgresql-0:1.0.1-3.RHEL4.3.s390x as a component of Red Hat Enterprise Linux ES version 4", product_id: "4ES:freeradius-postgresql-0:1.0.1-3.RHEL4.3.s390x", }, product_reference: "freeradius-postgresql-0:1.0.1-3.RHEL4.3.s390x", relates_to_product_reference: "4ES", }, { category: "default_component_of", full_product_name: { name: "freeradius-postgresql-0:1.0.1-3.RHEL4.3.x86_64 as a component of Red Hat Enterprise Linux ES version 4", product_id: "4ES:freeradius-postgresql-0:1.0.1-3.RHEL4.3.x86_64", }, product_reference: "freeradius-postgresql-0:1.0.1-3.RHEL4.3.x86_64", relates_to_product_reference: "4ES", }, { category: "default_component_of", full_product_name: { name: "freeradius-unixODBC-0:1.0.1-3.RHEL4.3.i386 as a component of Red Hat Enterprise Linux ES version 4", product_id: "4ES:freeradius-unixODBC-0:1.0.1-3.RHEL4.3.i386", }, product_reference: "freeradius-unixODBC-0:1.0.1-3.RHEL4.3.i386", relates_to_product_reference: "4ES", }, { category: "default_component_of", full_product_name: { name: "freeradius-unixODBC-0:1.0.1-3.RHEL4.3.ia64 as a component of Red Hat Enterprise Linux ES version 4", product_id: "4ES:freeradius-unixODBC-0:1.0.1-3.RHEL4.3.ia64", }, product_reference: "freeradius-unixODBC-0:1.0.1-3.RHEL4.3.ia64", relates_to_product_reference: "4ES", }, { category: "default_component_of", full_product_name: { name: "freeradius-unixODBC-0:1.0.1-3.RHEL4.3.ppc as a component of Red Hat Enterprise Linux ES version 4", product_id: "4ES:freeradius-unixODBC-0:1.0.1-3.RHEL4.3.ppc", }, product_reference: "freeradius-unixODBC-0:1.0.1-3.RHEL4.3.ppc", relates_to_product_reference: "4ES", }, { category: "default_component_of", full_product_name: { name: "freeradius-unixODBC-0:1.0.1-3.RHEL4.3.s390 as a component of Red Hat Enterprise Linux ES version 4", product_id: "4ES:freeradius-unixODBC-0:1.0.1-3.RHEL4.3.s390", }, product_reference: "freeradius-unixODBC-0:1.0.1-3.RHEL4.3.s390", relates_to_product_reference: "4ES", }, { category: "default_component_of", full_product_name: { name: "freeradius-unixODBC-0:1.0.1-3.RHEL4.3.s390x as a component of Red Hat Enterprise Linux ES version 4", product_id: "4ES:freeradius-unixODBC-0:1.0.1-3.RHEL4.3.s390x", }, product_reference: "freeradius-unixODBC-0:1.0.1-3.RHEL4.3.s390x", relates_to_product_reference: "4ES", }, { category: "default_component_of", full_product_name: { name: "freeradius-unixODBC-0:1.0.1-3.RHEL4.3.x86_64 as a component of Red Hat Enterprise Linux ES version 4", product_id: "4ES:freeradius-unixODBC-0:1.0.1-3.RHEL4.3.x86_64", }, product_reference: "freeradius-unixODBC-0:1.0.1-3.RHEL4.3.x86_64", relates_to_product_reference: "4ES", }, ], }, vulnerabilities: [ { cve: "CVE-2005-4744", discovery_date: "2005-05-01T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1617862", }, ], notes: [ { category: "description", text: "Off-by-one error in the sql_error function in sql_unixodbc.c in FreeRADIUS 1.0.2.5-5, and possibly other versions including 1.0.4, might allow remote attackers to cause a denial of service (crash) and possibly execute arbitrary code by causing the external database query to fail. NOTE: this single issue is part of a larger-scale disclosure, originally by SUSE, which reported multiple issues that were disputed by FreeRADIUS. Disputed issues included file descriptor leaks, memory disclosure, LDAP injection, and other issues. Without additional information, the most recent FreeRADIUS report is being regarded as the authoritative source for this CVE identifier.", title: "Vulnerability description", }, { category: "summary", text: "security flaw", title: "Vulnerability summary", }, ], product_status: { fixed: [ "3AS:freeradius-0:1.0.1-2.RHEL3.2.i386", "3AS:freeradius-0:1.0.1-2.RHEL3.2.ia64", "3AS:freeradius-0:1.0.1-2.RHEL3.2.ppc", "3AS:freeradius-0:1.0.1-2.RHEL3.2.s390", "3AS:freeradius-0:1.0.1-2.RHEL3.2.s390x", "3AS:freeradius-0:1.0.1-2.RHEL3.2.src", "3AS:freeradius-0:1.0.1-2.RHEL3.2.x86_64", "3AS:freeradius-debuginfo-0:1.0.1-2.RHEL3.2.i386", "3AS:freeradius-debuginfo-0:1.0.1-2.RHEL3.2.ia64", "3AS:freeradius-debuginfo-0:1.0.1-2.RHEL3.2.ppc", "3AS:freeradius-debuginfo-0:1.0.1-2.RHEL3.2.s390", "3AS:freeradius-debuginfo-0:1.0.1-2.RHEL3.2.s390x", "3AS:freeradius-debuginfo-0:1.0.1-2.RHEL3.2.x86_64", "3ES:freeradius-0:1.0.1-2.RHEL3.2.i386", "3ES:freeradius-0:1.0.1-2.RHEL3.2.ia64", "3ES:freeradius-0:1.0.1-2.RHEL3.2.ppc", "3ES:freeradius-0:1.0.1-2.RHEL3.2.s390", "3ES:freeradius-0:1.0.1-2.RHEL3.2.s390x", "3ES:freeradius-0:1.0.1-2.RHEL3.2.src", "3ES:freeradius-0:1.0.1-2.RHEL3.2.x86_64", "3ES:freeradius-debuginfo-0:1.0.1-2.RHEL3.2.i386", "3ES:freeradius-debuginfo-0:1.0.1-2.RHEL3.2.ia64", "3ES:freeradius-debuginfo-0:1.0.1-2.RHEL3.2.ppc", "3ES:freeradius-debuginfo-0:1.0.1-2.RHEL3.2.s390", "3ES:freeradius-debuginfo-0:1.0.1-2.RHEL3.2.s390x", "3ES:freeradius-debuginfo-0:1.0.1-2.RHEL3.2.x86_64", "4AS:freeradius-0:1.0.1-3.RHEL4.3.i386", "4AS:freeradius-0:1.0.1-3.RHEL4.3.ia64", "4AS:freeradius-0:1.0.1-3.RHEL4.3.ppc", "4AS:freeradius-0:1.0.1-3.RHEL4.3.s390", "4AS:freeradius-0:1.0.1-3.RHEL4.3.s390x", "4AS:freeradius-0:1.0.1-3.RHEL4.3.src", "4AS:freeradius-0:1.0.1-3.RHEL4.3.x86_64", "4AS:freeradius-debuginfo-0:1.0.1-3.RHEL4.3.i386", "4AS:freeradius-debuginfo-0:1.0.1-3.RHEL4.3.ia64", "4AS:freeradius-debuginfo-0:1.0.1-3.RHEL4.3.ppc", "4AS:freeradius-debuginfo-0:1.0.1-3.RHEL4.3.s390", "4AS:freeradius-debuginfo-0:1.0.1-3.RHEL4.3.s390x", "4AS:freeradius-debuginfo-0:1.0.1-3.RHEL4.3.x86_64", "4AS:freeradius-mysql-0:1.0.1-3.RHEL4.3.i386", "4AS:freeradius-mysql-0:1.0.1-3.RHEL4.3.ia64", "4AS:freeradius-mysql-0:1.0.1-3.RHEL4.3.ppc", "4AS:freeradius-mysql-0:1.0.1-3.RHEL4.3.s390", "4AS:freeradius-mysql-0:1.0.1-3.RHEL4.3.s390x", "4AS:freeradius-mysql-0:1.0.1-3.RHEL4.3.x86_64", "4AS:freeradius-postgresql-0:1.0.1-3.RHEL4.3.i386", "4AS:freeradius-postgresql-0:1.0.1-3.RHEL4.3.ia64", "4AS:freeradius-postgresql-0:1.0.1-3.RHEL4.3.ppc", "4AS:freeradius-postgresql-0:1.0.1-3.RHEL4.3.s390", "4AS:freeradius-postgresql-0:1.0.1-3.RHEL4.3.s390x", "4AS:freeradius-postgresql-0:1.0.1-3.RHEL4.3.x86_64", "4AS:freeradius-unixODBC-0:1.0.1-3.RHEL4.3.i386", "4AS:freeradius-unixODBC-0:1.0.1-3.RHEL4.3.ia64", "4AS:freeradius-unixODBC-0:1.0.1-3.RHEL4.3.ppc", "4AS:freeradius-unixODBC-0:1.0.1-3.RHEL4.3.s390", "4AS:freeradius-unixODBC-0:1.0.1-3.RHEL4.3.s390x", "4AS:freeradius-unixODBC-0:1.0.1-3.RHEL4.3.x86_64", "4ES:freeradius-0:1.0.1-3.RHEL4.3.i386", "4ES:freeradius-0:1.0.1-3.RHEL4.3.ia64", "4ES:freeradius-0:1.0.1-3.RHEL4.3.ppc", "4ES:freeradius-0:1.0.1-3.RHEL4.3.s390", "4ES:freeradius-0:1.0.1-3.RHEL4.3.s390x", "4ES:freeradius-0:1.0.1-3.RHEL4.3.src", "4ES:freeradius-0:1.0.1-3.RHEL4.3.x86_64", "4ES:freeradius-debuginfo-0:1.0.1-3.RHEL4.3.i386", "4ES:freeradius-debuginfo-0:1.0.1-3.RHEL4.3.ia64", "4ES:freeradius-debuginfo-0:1.0.1-3.RHEL4.3.ppc", "4ES:freeradius-debuginfo-0:1.0.1-3.RHEL4.3.s390", "4ES:freeradius-debuginfo-0:1.0.1-3.RHEL4.3.s390x", "4ES:freeradius-debuginfo-0:1.0.1-3.RHEL4.3.x86_64", "4ES:freeradius-mysql-0:1.0.1-3.RHEL4.3.i386", "4ES:freeradius-mysql-0:1.0.1-3.RHEL4.3.ia64", "4ES:freeradius-mysql-0:1.0.1-3.RHEL4.3.ppc", "4ES:freeradius-mysql-0:1.0.1-3.RHEL4.3.s390", "4ES:freeradius-mysql-0:1.0.1-3.RHEL4.3.s390x", "4ES:freeradius-mysql-0:1.0.1-3.RHEL4.3.x86_64", "4ES:freeradius-postgresql-0:1.0.1-3.RHEL4.3.i386", "4ES:freeradius-postgresql-0:1.0.1-3.RHEL4.3.ia64", "4ES:freeradius-postgresql-0:1.0.1-3.RHEL4.3.ppc", "4ES:freeradius-postgresql-0:1.0.1-3.RHEL4.3.s390", "4ES:freeradius-postgresql-0:1.0.1-3.RHEL4.3.s390x", "4ES:freeradius-postgresql-0:1.0.1-3.RHEL4.3.x86_64", "4ES:freeradius-unixODBC-0:1.0.1-3.RHEL4.3.i386", "4ES:freeradius-unixODBC-0:1.0.1-3.RHEL4.3.ia64", "4ES:freeradius-unixODBC-0:1.0.1-3.RHEL4.3.ppc", "4ES:freeradius-unixODBC-0:1.0.1-3.RHEL4.3.s390", "4ES:freeradius-unixODBC-0:1.0.1-3.RHEL4.3.s390x", "4ES:freeradius-unixODBC-0:1.0.1-3.RHEL4.3.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2005-4744", }, { category: "external", summary: "RHBZ#1617862", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1617862", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2005-4744", url: "https://www.cve.org/CVERecord?id=CVE-2005-4744", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2005-4744", url: "https://nvd.nist.gov/vuln/detail/CVE-2005-4744", }, ], release_date: "2005-09-09T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2006-04-04T08:51:00+00:00", details: "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via Red Hat Network. To use Red Hat Network,\nlaunch the Red Hat Update Agent with the following command:\n\nup2date\n\nThis will start an interactive process that will result in the appropriate\nRPMs being upgraded on your system.", product_ids: [ "3AS:freeradius-0:1.0.1-2.RHEL3.2.i386", "3AS:freeradius-0:1.0.1-2.RHEL3.2.ia64", "3AS:freeradius-0:1.0.1-2.RHEL3.2.ppc", "3AS:freeradius-0:1.0.1-2.RHEL3.2.s390", "3AS:freeradius-0:1.0.1-2.RHEL3.2.s390x", "3AS:freeradius-0:1.0.1-2.RHEL3.2.src", "3AS:freeradius-0:1.0.1-2.RHEL3.2.x86_64", "3AS:freeradius-debuginfo-0:1.0.1-2.RHEL3.2.i386", "3AS:freeradius-debuginfo-0:1.0.1-2.RHEL3.2.ia64", "3AS:freeradius-debuginfo-0:1.0.1-2.RHEL3.2.ppc", "3AS:freeradius-debuginfo-0:1.0.1-2.RHEL3.2.s390", "3AS:freeradius-debuginfo-0:1.0.1-2.RHEL3.2.s390x", "3AS:freeradius-debuginfo-0:1.0.1-2.RHEL3.2.x86_64", "3ES:freeradius-0:1.0.1-2.RHEL3.2.i386", "3ES:freeradius-0:1.0.1-2.RHEL3.2.ia64", "3ES:freeradius-0:1.0.1-2.RHEL3.2.ppc", "3ES:freeradius-0:1.0.1-2.RHEL3.2.s390", "3ES:freeradius-0:1.0.1-2.RHEL3.2.s390x", "3ES:freeradius-0:1.0.1-2.RHEL3.2.src", "3ES:freeradius-0:1.0.1-2.RHEL3.2.x86_64", "3ES:freeradius-debuginfo-0:1.0.1-2.RHEL3.2.i386", "3ES:freeradius-debuginfo-0:1.0.1-2.RHEL3.2.ia64", "3ES:freeradius-debuginfo-0:1.0.1-2.RHEL3.2.ppc", "3ES:freeradius-debuginfo-0:1.0.1-2.RHEL3.2.s390", "3ES:freeradius-debuginfo-0:1.0.1-2.RHEL3.2.s390x", "3ES:freeradius-debuginfo-0:1.0.1-2.RHEL3.2.x86_64", "4AS:freeradius-0:1.0.1-3.RHEL4.3.i386", "4AS:freeradius-0:1.0.1-3.RHEL4.3.ia64", "4AS:freeradius-0:1.0.1-3.RHEL4.3.ppc", "4AS:freeradius-0:1.0.1-3.RHEL4.3.s390", "4AS:freeradius-0:1.0.1-3.RHEL4.3.s390x", "4AS:freeradius-0:1.0.1-3.RHEL4.3.src", "4AS:freeradius-0:1.0.1-3.RHEL4.3.x86_64", "4AS:freeradius-debuginfo-0:1.0.1-3.RHEL4.3.i386", "4AS:freeradius-debuginfo-0:1.0.1-3.RHEL4.3.ia64", "4AS:freeradius-debuginfo-0:1.0.1-3.RHEL4.3.ppc", "4AS:freeradius-debuginfo-0:1.0.1-3.RHEL4.3.s390", "4AS:freeradius-debuginfo-0:1.0.1-3.RHEL4.3.s390x", "4AS:freeradius-debuginfo-0:1.0.1-3.RHEL4.3.x86_64", "4AS:freeradius-mysql-0:1.0.1-3.RHEL4.3.i386", "4AS:freeradius-mysql-0:1.0.1-3.RHEL4.3.ia64", "4AS:freeradius-mysql-0:1.0.1-3.RHEL4.3.ppc", "4AS:freeradius-mysql-0:1.0.1-3.RHEL4.3.s390", "4AS:freeradius-mysql-0:1.0.1-3.RHEL4.3.s390x", "4AS:freeradius-mysql-0:1.0.1-3.RHEL4.3.x86_64", "4AS:freeradius-postgresql-0:1.0.1-3.RHEL4.3.i386", "4AS:freeradius-postgresql-0:1.0.1-3.RHEL4.3.ia64", "4AS:freeradius-postgresql-0:1.0.1-3.RHEL4.3.ppc", "4AS:freeradius-postgresql-0:1.0.1-3.RHEL4.3.s390", "4AS:freeradius-postgresql-0:1.0.1-3.RHEL4.3.s390x", "4AS:freeradius-postgresql-0:1.0.1-3.RHEL4.3.x86_64", "4AS:freeradius-unixODBC-0:1.0.1-3.RHEL4.3.i386", "4AS:freeradius-unixODBC-0:1.0.1-3.RHEL4.3.ia64", "4AS:freeradius-unixODBC-0:1.0.1-3.RHEL4.3.ppc", "4AS:freeradius-unixODBC-0:1.0.1-3.RHEL4.3.s390", "4AS:freeradius-unixODBC-0:1.0.1-3.RHEL4.3.s390x", "4AS:freeradius-unixODBC-0:1.0.1-3.RHEL4.3.x86_64", "4ES:freeradius-0:1.0.1-3.RHEL4.3.i386", "4ES:freeradius-0:1.0.1-3.RHEL4.3.ia64", "4ES:freeradius-0:1.0.1-3.RHEL4.3.ppc", "4ES:freeradius-0:1.0.1-3.RHEL4.3.s390", "4ES:freeradius-0:1.0.1-3.RHEL4.3.s390x", "4ES:freeradius-0:1.0.1-3.RHEL4.3.src", "4ES:freeradius-0:1.0.1-3.RHEL4.3.x86_64", "4ES:freeradius-debuginfo-0:1.0.1-3.RHEL4.3.i386", "4ES:freeradius-debuginfo-0:1.0.1-3.RHEL4.3.ia64", "4ES:freeradius-debuginfo-0:1.0.1-3.RHEL4.3.ppc", "4ES:freeradius-debuginfo-0:1.0.1-3.RHEL4.3.s390", "4ES:freeradius-debuginfo-0:1.0.1-3.RHEL4.3.s390x", "4ES:freeradius-debuginfo-0:1.0.1-3.RHEL4.3.x86_64", "4ES:freeradius-mysql-0:1.0.1-3.RHEL4.3.i386", "4ES:freeradius-mysql-0:1.0.1-3.RHEL4.3.ia64", "4ES:freeradius-mysql-0:1.0.1-3.RHEL4.3.ppc", "4ES:freeradius-mysql-0:1.0.1-3.RHEL4.3.s390", "4ES:freeradius-mysql-0:1.0.1-3.RHEL4.3.s390x", "4ES:freeradius-mysql-0:1.0.1-3.RHEL4.3.x86_64", "4ES:freeradius-postgresql-0:1.0.1-3.RHEL4.3.i386", "4ES:freeradius-postgresql-0:1.0.1-3.RHEL4.3.ia64", "4ES:freeradius-postgresql-0:1.0.1-3.RHEL4.3.ppc", "4ES:freeradius-postgresql-0:1.0.1-3.RHEL4.3.s390", "4ES:freeradius-postgresql-0:1.0.1-3.RHEL4.3.s390x", "4ES:freeradius-postgresql-0:1.0.1-3.RHEL4.3.x86_64", "4ES:freeradius-unixODBC-0:1.0.1-3.RHEL4.3.i386", "4ES:freeradius-unixODBC-0:1.0.1-3.RHEL4.3.ia64", "4ES:freeradius-unixODBC-0:1.0.1-3.RHEL4.3.ppc", "4ES:freeradius-unixODBC-0:1.0.1-3.RHEL4.3.s390", "4ES:freeradius-unixODBC-0:1.0.1-3.RHEL4.3.s390x", "4ES:freeradius-unixODBC-0:1.0.1-3.RHEL4.3.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2006:0271", }, ], threats: [ { category: "impact", details: "Low", }, ], title: "security flaw", }, { cve: "CVE-2006-1354", discovery_date: "2006-03-21T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1618034", }, ], notes: [ { category: "description", text: "Unspecified vulnerability in FreeRADIUS 1.0.0 up to 1.1.0 allows remote attackers to bypass authentication or cause a denial of service (server crash) via \"Insufficient input validation\" in the EAP-MSCHAPv2 state machine module.", title: "Vulnerability description", }, { category: "summary", text: "security flaw", title: "Vulnerability summary", }, ], product_status: { fixed: [ "3AS:freeradius-0:1.0.1-2.RHEL3.2.i386", "3AS:freeradius-0:1.0.1-2.RHEL3.2.ia64", "3AS:freeradius-0:1.0.1-2.RHEL3.2.ppc", "3AS:freeradius-0:1.0.1-2.RHEL3.2.s390", "3AS:freeradius-0:1.0.1-2.RHEL3.2.s390x", "3AS:freeradius-0:1.0.1-2.RHEL3.2.src", "3AS:freeradius-0:1.0.1-2.RHEL3.2.x86_64", "3AS:freeradius-debuginfo-0:1.0.1-2.RHEL3.2.i386", "3AS:freeradius-debuginfo-0:1.0.1-2.RHEL3.2.ia64", "3AS:freeradius-debuginfo-0:1.0.1-2.RHEL3.2.ppc", "3AS:freeradius-debuginfo-0:1.0.1-2.RHEL3.2.s390", "3AS:freeradius-debuginfo-0:1.0.1-2.RHEL3.2.s390x", "3AS:freeradius-debuginfo-0:1.0.1-2.RHEL3.2.x86_64", "3ES:freeradius-0:1.0.1-2.RHEL3.2.i386", "3ES:freeradius-0:1.0.1-2.RHEL3.2.ia64", "3ES:freeradius-0:1.0.1-2.RHEL3.2.ppc", "3ES:freeradius-0:1.0.1-2.RHEL3.2.s390", "3ES:freeradius-0:1.0.1-2.RHEL3.2.s390x", "3ES:freeradius-0:1.0.1-2.RHEL3.2.src", "3ES:freeradius-0:1.0.1-2.RHEL3.2.x86_64", "3ES:freeradius-debuginfo-0:1.0.1-2.RHEL3.2.i386", "3ES:freeradius-debuginfo-0:1.0.1-2.RHEL3.2.ia64", "3ES:freeradius-debuginfo-0:1.0.1-2.RHEL3.2.ppc", "3ES:freeradius-debuginfo-0:1.0.1-2.RHEL3.2.s390", "3ES:freeradius-debuginfo-0:1.0.1-2.RHEL3.2.s390x", "3ES:freeradius-debuginfo-0:1.0.1-2.RHEL3.2.x86_64", "4AS:freeradius-0:1.0.1-3.RHEL4.3.i386", "4AS:freeradius-0:1.0.1-3.RHEL4.3.ia64", "4AS:freeradius-0:1.0.1-3.RHEL4.3.ppc", "4AS:freeradius-0:1.0.1-3.RHEL4.3.s390", "4AS:freeradius-0:1.0.1-3.RHEL4.3.s390x", "4AS:freeradius-0:1.0.1-3.RHEL4.3.src", "4AS:freeradius-0:1.0.1-3.RHEL4.3.x86_64", "4AS:freeradius-debuginfo-0:1.0.1-3.RHEL4.3.i386", "4AS:freeradius-debuginfo-0:1.0.1-3.RHEL4.3.ia64", "4AS:freeradius-debuginfo-0:1.0.1-3.RHEL4.3.ppc", "4AS:freeradius-debuginfo-0:1.0.1-3.RHEL4.3.s390", "4AS:freeradius-debuginfo-0:1.0.1-3.RHEL4.3.s390x", "4AS:freeradius-debuginfo-0:1.0.1-3.RHEL4.3.x86_64", "4AS:freeradius-mysql-0:1.0.1-3.RHEL4.3.i386", "4AS:freeradius-mysql-0:1.0.1-3.RHEL4.3.ia64", "4AS:freeradius-mysql-0:1.0.1-3.RHEL4.3.ppc", "4AS:freeradius-mysql-0:1.0.1-3.RHEL4.3.s390", "4AS:freeradius-mysql-0:1.0.1-3.RHEL4.3.s390x", "4AS:freeradius-mysql-0:1.0.1-3.RHEL4.3.x86_64", "4AS:freeradius-postgresql-0:1.0.1-3.RHEL4.3.i386", "4AS:freeradius-postgresql-0:1.0.1-3.RHEL4.3.ia64", "4AS:freeradius-postgresql-0:1.0.1-3.RHEL4.3.ppc", "4AS:freeradius-postgresql-0:1.0.1-3.RHEL4.3.s390", "4AS:freeradius-postgresql-0:1.0.1-3.RHEL4.3.s390x", "4AS:freeradius-postgresql-0:1.0.1-3.RHEL4.3.x86_64", "4AS:freeradius-unixODBC-0:1.0.1-3.RHEL4.3.i386", "4AS:freeradius-unixODBC-0:1.0.1-3.RHEL4.3.ia64", "4AS:freeradius-unixODBC-0:1.0.1-3.RHEL4.3.ppc", "4AS:freeradius-unixODBC-0:1.0.1-3.RHEL4.3.s390", "4AS:freeradius-unixODBC-0:1.0.1-3.RHEL4.3.s390x", "4AS:freeradius-unixODBC-0:1.0.1-3.RHEL4.3.x86_64", "4ES:freeradius-0:1.0.1-3.RHEL4.3.i386", "4ES:freeradius-0:1.0.1-3.RHEL4.3.ia64", "4ES:freeradius-0:1.0.1-3.RHEL4.3.ppc", "4ES:freeradius-0:1.0.1-3.RHEL4.3.s390", "4ES:freeradius-0:1.0.1-3.RHEL4.3.s390x", "4ES:freeradius-0:1.0.1-3.RHEL4.3.src", "4ES:freeradius-0:1.0.1-3.RHEL4.3.x86_64", "4ES:freeradius-debuginfo-0:1.0.1-3.RHEL4.3.i386", "4ES:freeradius-debuginfo-0:1.0.1-3.RHEL4.3.ia64", "4ES:freeradius-debuginfo-0:1.0.1-3.RHEL4.3.ppc", "4ES:freeradius-debuginfo-0:1.0.1-3.RHEL4.3.s390", "4ES:freeradius-debuginfo-0:1.0.1-3.RHEL4.3.s390x", "4ES:freeradius-debuginfo-0:1.0.1-3.RHEL4.3.x86_64", "4ES:freeradius-mysql-0:1.0.1-3.RHEL4.3.i386", "4ES:freeradius-mysql-0:1.0.1-3.RHEL4.3.ia64", "4ES:freeradius-mysql-0:1.0.1-3.RHEL4.3.ppc", "4ES:freeradius-mysql-0:1.0.1-3.RHEL4.3.s390", "4ES:freeradius-mysql-0:1.0.1-3.RHEL4.3.s390x", "4ES:freeradius-mysql-0:1.0.1-3.RHEL4.3.x86_64", "4ES:freeradius-postgresql-0:1.0.1-3.RHEL4.3.i386", "4ES:freeradius-postgresql-0:1.0.1-3.RHEL4.3.ia64", "4ES:freeradius-postgresql-0:1.0.1-3.RHEL4.3.ppc", "4ES:freeradius-postgresql-0:1.0.1-3.RHEL4.3.s390", "4ES:freeradius-postgresql-0:1.0.1-3.RHEL4.3.s390x", "4ES:freeradius-postgresql-0:1.0.1-3.RHEL4.3.x86_64", "4ES:freeradius-unixODBC-0:1.0.1-3.RHEL4.3.i386", "4ES:freeradius-unixODBC-0:1.0.1-3.RHEL4.3.ia64", "4ES:freeradius-unixODBC-0:1.0.1-3.RHEL4.3.ppc", "4ES:freeradius-unixODBC-0:1.0.1-3.RHEL4.3.s390", "4ES:freeradius-unixODBC-0:1.0.1-3.RHEL4.3.s390x", "4ES:freeradius-unixODBC-0:1.0.1-3.RHEL4.3.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2006-1354", }, { category: "external", summary: "RHBZ#1618034", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1618034", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2006-1354", url: "https://www.cve.org/CVERecord?id=CVE-2006-1354", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2006-1354", url: "https://nvd.nist.gov/vuln/detail/CVE-2006-1354", }, ], release_date: "2006-03-20T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2006-04-04T08:51:00+00:00", details: "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via Red Hat Network. To use Red Hat Network,\nlaunch the Red Hat Update Agent with the following command:\n\nup2date\n\nThis will start an interactive process that will result in the appropriate\nRPMs being upgraded on your system.", product_ids: [ "3AS:freeradius-0:1.0.1-2.RHEL3.2.i386", "3AS:freeradius-0:1.0.1-2.RHEL3.2.ia64", "3AS:freeradius-0:1.0.1-2.RHEL3.2.ppc", "3AS:freeradius-0:1.0.1-2.RHEL3.2.s390", "3AS:freeradius-0:1.0.1-2.RHEL3.2.s390x", "3AS:freeradius-0:1.0.1-2.RHEL3.2.src", "3AS:freeradius-0:1.0.1-2.RHEL3.2.x86_64", "3AS:freeradius-debuginfo-0:1.0.1-2.RHEL3.2.i386", "3AS:freeradius-debuginfo-0:1.0.1-2.RHEL3.2.ia64", "3AS:freeradius-debuginfo-0:1.0.1-2.RHEL3.2.ppc", "3AS:freeradius-debuginfo-0:1.0.1-2.RHEL3.2.s390", "3AS:freeradius-debuginfo-0:1.0.1-2.RHEL3.2.s390x", "3AS:freeradius-debuginfo-0:1.0.1-2.RHEL3.2.x86_64", "3ES:freeradius-0:1.0.1-2.RHEL3.2.i386", "3ES:freeradius-0:1.0.1-2.RHEL3.2.ia64", "3ES:freeradius-0:1.0.1-2.RHEL3.2.ppc", "3ES:freeradius-0:1.0.1-2.RHEL3.2.s390", "3ES:freeradius-0:1.0.1-2.RHEL3.2.s390x", "3ES:freeradius-0:1.0.1-2.RHEL3.2.src", "3ES:freeradius-0:1.0.1-2.RHEL3.2.x86_64", "3ES:freeradius-debuginfo-0:1.0.1-2.RHEL3.2.i386", "3ES:freeradius-debuginfo-0:1.0.1-2.RHEL3.2.ia64", "3ES:freeradius-debuginfo-0:1.0.1-2.RHEL3.2.ppc", "3ES:freeradius-debuginfo-0:1.0.1-2.RHEL3.2.s390", "3ES:freeradius-debuginfo-0:1.0.1-2.RHEL3.2.s390x", "3ES:freeradius-debuginfo-0:1.0.1-2.RHEL3.2.x86_64", "4AS:freeradius-0:1.0.1-3.RHEL4.3.i386", "4AS:freeradius-0:1.0.1-3.RHEL4.3.ia64", "4AS:freeradius-0:1.0.1-3.RHEL4.3.ppc", "4AS:freeradius-0:1.0.1-3.RHEL4.3.s390", "4AS:freeradius-0:1.0.1-3.RHEL4.3.s390x", "4AS:freeradius-0:1.0.1-3.RHEL4.3.src", "4AS:freeradius-0:1.0.1-3.RHEL4.3.x86_64", "4AS:freeradius-debuginfo-0:1.0.1-3.RHEL4.3.i386", "4AS:freeradius-debuginfo-0:1.0.1-3.RHEL4.3.ia64", "4AS:freeradius-debuginfo-0:1.0.1-3.RHEL4.3.ppc", "4AS:freeradius-debuginfo-0:1.0.1-3.RHEL4.3.s390", "4AS:freeradius-debuginfo-0:1.0.1-3.RHEL4.3.s390x", "4AS:freeradius-debuginfo-0:1.0.1-3.RHEL4.3.x86_64", "4AS:freeradius-mysql-0:1.0.1-3.RHEL4.3.i386", "4AS:freeradius-mysql-0:1.0.1-3.RHEL4.3.ia64", "4AS:freeradius-mysql-0:1.0.1-3.RHEL4.3.ppc", "4AS:freeradius-mysql-0:1.0.1-3.RHEL4.3.s390", "4AS:freeradius-mysql-0:1.0.1-3.RHEL4.3.s390x", "4AS:freeradius-mysql-0:1.0.1-3.RHEL4.3.x86_64", "4AS:freeradius-postgresql-0:1.0.1-3.RHEL4.3.i386", "4AS:freeradius-postgresql-0:1.0.1-3.RHEL4.3.ia64", "4AS:freeradius-postgresql-0:1.0.1-3.RHEL4.3.ppc", "4AS:freeradius-postgresql-0:1.0.1-3.RHEL4.3.s390", "4AS:freeradius-postgresql-0:1.0.1-3.RHEL4.3.s390x", "4AS:freeradius-postgresql-0:1.0.1-3.RHEL4.3.x86_64", "4AS:freeradius-unixODBC-0:1.0.1-3.RHEL4.3.i386", "4AS:freeradius-unixODBC-0:1.0.1-3.RHEL4.3.ia64", "4AS:freeradius-unixODBC-0:1.0.1-3.RHEL4.3.ppc", "4AS:freeradius-unixODBC-0:1.0.1-3.RHEL4.3.s390", "4AS:freeradius-unixODBC-0:1.0.1-3.RHEL4.3.s390x", "4AS:freeradius-unixODBC-0:1.0.1-3.RHEL4.3.x86_64", "4ES:freeradius-0:1.0.1-3.RHEL4.3.i386", "4ES:freeradius-0:1.0.1-3.RHEL4.3.ia64", "4ES:freeradius-0:1.0.1-3.RHEL4.3.ppc", "4ES:freeradius-0:1.0.1-3.RHEL4.3.s390", "4ES:freeradius-0:1.0.1-3.RHEL4.3.s390x", "4ES:freeradius-0:1.0.1-3.RHEL4.3.src", "4ES:freeradius-0:1.0.1-3.RHEL4.3.x86_64", "4ES:freeradius-debuginfo-0:1.0.1-3.RHEL4.3.i386", "4ES:freeradius-debuginfo-0:1.0.1-3.RHEL4.3.ia64", "4ES:freeradius-debuginfo-0:1.0.1-3.RHEL4.3.ppc", "4ES:freeradius-debuginfo-0:1.0.1-3.RHEL4.3.s390", "4ES:freeradius-debuginfo-0:1.0.1-3.RHEL4.3.s390x", "4ES:freeradius-debuginfo-0:1.0.1-3.RHEL4.3.x86_64", "4ES:freeradius-mysql-0:1.0.1-3.RHEL4.3.i386", "4ES:freeradius-mysql-0:1.0.1-3.RHEL4.3.ia64", "4ES:freeradius-mysql-0:1.0.1-3.RHEL4.3.ppc", "4ES:freeradius-mysql-0:1.0.1-3.RHEL4.3.s390", "4ES:freeradius-mysql-0:1.0.1-3.RHEL4.3.s390x", "4ES:freeradius-mysql-0:1.0.1-3.RHEL4.3.x86_64", "4ES:freeradius-postgresql-0:1.0.1-3.RHEL4.3.i386", "4ES:freeradius-postgresql-0:1.0.1-3.RHEL4.3.ia64", "4ES:freeradius-postgresql-0:1.0.1-3.RHEL4.3.ppc", "4ES:freeradius-postgresql-0:1.0.1-3.RHEL4.3.s390", "4ES:freeradius-postgresql-0:1.0.1-3.RHEL4.3.s390x", "4ES:freeradius-postgresql-0:1.0.1-3.RHEL4.3.x86_64", "4ES:freeradius-unixODBC-0:1.0.1-3.RHEL4.3.i386", "4ES:freeradius-unixODBC-0:1.0.1-3.RHEL4.3.ia64", "4ES:freeradius-unixODBC-0:1.0.1-3.RHEL4.3.ppc", "4ES:freeradius-unixODBC-0:1.0.1-3.RHEL4.3.s390", "4ES:freeradius-unixODBC-0:1.0.1-3.RHEL4.3.s390x", "4ES:freeradius-unixODBC-0:1.0.1-3.RHEL4.3.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2006:0271", }, ], threats: [ { category: "impact", details: "Important", }, ], title: "security flaw", }, ], }
rhsa-2006:0271
Vulnerability from csaf_redhat
Published
2006-04-04 08:51
Modified
2024-11-22 00:11
Summary
Red Hat Security Advisory: freeradius security update
Notes
Topic
Updated freeradius packages that fix an authentication weakness are now
available.
This update has been rated as having important security impact by the Red
Hat Security Response Team.
Details
FreeRADIUS is a high-performance and highly configurable free RADIUS server
designed to allow centralized authentication and authorization for a network.
A bug was found in the way FreeRADIUS authenticates users via the MSCHAP V2
protocol. It is possible for a remote attacker to authenticate as a victim
by sending a malformed MSCHAP V2 login request to the FreeRADIUS server.
(CVE-2006-1354)
Please note that FreeRADIUS installations not using the MSCHAP V2 protocol
for authentication are not vulnerable to this issue.
A bug was also found in the way FreeRADIUS logs SQL errors from the
sql_unixodbc module. It may be possible for an attacker to cause FreeRADIUS
to crash or execute arbitrary code if they are able to manipulate the SQL
database FreeRADIUS is connecting to. (CVE-2005-4744)
Users of FreeRADIUS should update to these erratum packages, which contain
backported patches and are not vulnerable to these issues.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{ document: { aggregate_severity: { namespace: "https://access.redhat.com/security/updates/classification/", text: "Important", }, category: "csaf_security_advisory", csaf_version: "2.0", distribution: { text: "Copyright © Red Hat, Inc. All rights reserved.", tlp: { label: "WHITE", url: "https://www.first.org/tlp/", }, }, lang: "en", notes: [ { category: "summary", text: "Updated freeradius packages that fix an authentication weakness are now\navailable.\n\nThis update has been rated as having important security impact by the Red\nHat Security Response Team.", title: "Topic", }, { category: "general", text: "FreeRADIUS is a high-performance and highly configurable free RADIUS server\ndesigned to allow centralized authentication and authorization for a network. \n\nA bug was found in the way FreeRADIUS authenticates users via the MSCHAP V2\nprotocol. It is possible for a remote attacker to authenticate as a victim\nby sending a malformed MSCHAP V2 login request to the FreeRADIUS server.\n(CVE-2006-1354)\n\nPlease note that FreeRADIUS installations not using the MSCHAP V2 protocol\nfor authentication are not vulnerable to this issue.\n\nA bug was also found in the way FreeRADIUS logs SQL errors from the\nsql_unixodbc module. It may be possible for an attacker to cause FreeRADIUS\nto crash or execute arbitrary code if they are able to manipulate the SQL\ndatabase FreeRADIUS is connecting to. (CVE-2005-4744)\n\nUsers of FreeRADIUS should update to these erratum packages, which contain\nbackported patches and are not vulnerable to these issues.", title: "Details", }, { category: "legal_disclaimer", text: "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", title: "Terms of Use", }, ], publisher: { category: "vendor", contact_details: "https://access.redhat.com/security/team/contact/", issuing_authority: "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", name: "Red Hat Product Security", namespace: "https://www.redhat.com", }, references: [ { category: "self", summary: "https://access.redhat.com/errata/RHSA-2006:0271", url: "https://access.redhat.com/errata/RHSA-2006:0271", }, { category: "external", summary: "https://access.redhat.com/security/updates/classification/#important", url: "https://access.redhat.com/security/updates/classification/#important", }, { category: "external", summary: "167676", url: "https://bugzilla.redhat.com/show_bug.cgi?id=167676", }, { category: "external", summary: "186083", url: "https://bugzilla.redhat.com/show_bug.cgi?id=186083", }, { category: "self", summary: "Canonical URL", url: "https://security.access.redhat.com/data/csaf/v2/advisories/2006/rhsa-2006_0271.json", }, ], title: "Red Hat Security Advisory: freeradius security update", tracking: { current_release_date: "2024-11-22T00:11:16+00:00", generator: { date: "2024-11-22T00:11:16+00:00", engine: { name: "Red Hat SDEngine", version: "4.2.1", }, }, id: "RHSA-2006:0271", initial_release_date: "2006-04-04T08:51:00+00:00", revision_history: [ { date: "2006-04-04T08:51:00+00:00", number: "1", summary: "Initial version", }, { date: "2006-04-04T00:00:00+00:00", number: "2", summary: "Last updated version", }, { date: "2024-11-22T00:11:16+00:00", number: "3", summary: "Last generated version", }, ], status: "final", version: "3", }, }, product_tree: { branches: [ { branches: [ { branches: [ { category: "product_name", name: "Red Hat Enterprise Linux AS version 3", product: { name: "Red Hat Enterprise Linux AS version 3", product_id: "3AS", product_identification_helper: { cpe: "cpe:/o:redhat:enterprise_linux:3::as", }, }, }, { category: "product_name", name: "Red Hat Enterprise Linux ES version 3", product: { name: "Red Hat Enterprise Linux ES version 3", product_id: "3ES", product_identification_helper: { cpe: "cpe:/o:redhat:enterprise_linux:3::es", }, }, }, { category: "product_name", name: "Red Hat Enterprise Linux AS version 4", product: { name: "Red Hat Enterprise Linux AS version 4", product_id: "4AS", product_identification_helper: { cpe: "cpe:/o:redhat:enterprise_linux:4::as", }, }, }, { category: "product_name", name: "Red Hat Enterprise Linux ES version 4", product: { name: "Red Hat Enterprise Linux ES version 4", product_id: "4ES", product_identification_helper: { cpe: "cpe:/o:redhat:enterprise_linux:4::es", }, }, }, ], category: "product_family", name: "Red Hat Enterprise Linux", }, { branches: [ { category: "product_version", name: "freeradius-0:1.0.1-2.RHEL3.2.ia64", product: { name: "freeradius-0:1.0.1-2.RHEL3.2.ia64", product_id: "freeradius-0:1.0.1-2.RHEL3.2.ia64", product_identification_helper: { purl: "pkg:rpm/redhat/freeradius@1.0.1-2.RHEL3.2?arch=ia64", }, }, }, { category: "product_version", name: "freeradius-debuginfo-0:1.0.1-2.RHEL3.2.ia64", product: { name: "freeradius-debuginfo-0:1.0.1-2.RHEL3.2.ia64", product_id: "freeradius-debuginfo-0:1.0.1-2.RHEL3.2.ia64", product_identification_helper: { purl: "pkg:rpm/redhat/freeradius-debuginfo@1.0.1-2.RHEL3.2?arch=ia64", }, }, }, { category: "product_version", name: "freeradius-postgresql-0:1.0.1-3.RHEL4.3.ia64", product: { name: "freeradius-postgresql-0:1.0.1-3.RHEL4.3.ia64", product_id: "freeradius-postgresql-0:1.0.1-3.RHEL4.3.ia64", product_identification_helper: { purl: "pkg:rpm/redhat/freeradius-postgresql@1.0.1-3.RHEL4.3?arch=ia64", }, }, }, { category: "product_version", name: "freeradius-unixODBC-0:1.0.1-3.RHEL4.3.ia64", product: { name: "freeradius-unixODBC-0:1.0.1-3.RHEL4.3.ia64", product_id: "freeradius-unixODBC-0:1.0.1-3.RHEL4.3.ia64", product_identification_helper: { purl: "pkg:rpm/redhat/freeradius-unixODBC@1.0.1-3.RHEL4.3?arch=ia64", }, }, }, { category: "product_version", name: "freeradius-0:1.0.1-3.RHEL4.3.ia64", product: { name: "freeradius-0:1.0.1-3.RHEL4.3.ia64", product_id: "freeradius-0:1.0.1-3.RHEL4.3.ia64", product_identification_helper: { purl: "pkg:rpm/redhat/freeradius@1.0.1-3.RHEL4.3?arch=ia64", }, }, }, { category: "product_version", name: "freeradius-mysql-0:1.0.1-3.RHEL4.3.ia64", product: { name: "freeradius-mysql-0:1.0.1-3.RHEL4.3.ia64", product_id: "freeradius-mysql-0:1.0.1-3.RHEL4.3.ia64", product_identification_helper: { purl: "pkg:rpm/redhat/freeradius-mysql@1.0.1-3.RHEL4.3?arch=ia64", }, }, }, { category: "product_version", name: "freeradius-debuginfo-0:1.0.1-3.RHEL4.3.ia64", product: { name: "freeradius-debuginfo-0:1.0.1-3.RHEL4.3.ia64", product_id: "freeradius-debuginfo-0:1.0.1-3.RHEL4.3.ia64", product_identification_helper: { purl: "pkg:rpm/redhat/freeradius-debuginfo@1.0.1-3.RHEL4.3?arch=ia64", }, }, }, ], category: "architecture", name: "ia64", }, { branches: [ { category: "product_version", name: "freeradius-0:1.0.1-2.RHEL3.2.src", product: { name: "freeradius-0:1.0.1-2.RHEL3.2.src", product_id: "freeradius-0:1.0.1-2.RHEL3.2.src", product_identification_helper: { purl: "pkg:rpm/redhat/freeradius@1.0.1-2.RHEL3.2?arch=src", }, }, }, { category: "product_version", name: "freeradius-0:1.0.1-3.RHEL4.3.src", product: { name: "freeradius-0:1.0.1-3.RHEL4.3.src", product_id: "freeradius-0:1.0.1-3.RHEL4.3.src", product_identification_helper: { purl: "pkg:rpm/redhat/freeradius@1.0.1-3.RHEL4.3?arch=src", }, }, }, ], category: "architecture", name: "src", }, { branches: [ { category: "product_version", name: "freeradius-0:1.0.1-2.RHEL3.2.x86_64", product: { name: "freeradius-0:1.0.1-2.RHEL3.2.x86_64", product_id: "freeradius-0:1.0.1-2.RHEL3.2.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/freeradius@1.0.1-2.RHEL3.2?arch=x86_64", }, }, }, { category: "product_version", name: "freeradius-debuginfo-0:1.0.1-2.RHEL3.2.x86_64", product: { name: "freeradius-debuginfo-0:1.0.1-2.RHEL3.2.x86_64", product_id: "freeradius-debuginfo-0:1.0.1-2.RHEL3.2.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/freeradius-debuginfo@1.0.1-2.RHEL3.2?arch=x86_64", }, }, }, { category: "product_version", name: "freeradius-postgresql-0:1.0.1-3.RHEL4.3.x86_64", product: { name: "freeradius-postgresql-0:1.0.1-3.RHEL4.3.x86_64", product_id: "freeradius-postgresql-0:1.0.1-3.RHEL4.3.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/freeradius-postgresql@1.0.1-3.RHEL4.3?arch=x86_64", }, }, }, { category: "product_version", name: "freeradius-unixODBC-0:1.0.1-3.RHEL4.3.x86_64", product: { name: "freeradius-unixODBC-0:1.0.1-3.RHEL4.3.x86_64", product_id: "freeradius-unixODBC-0:1.0.1-3.RHEL4.3.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/freeradius-unixODBC@1.0.1-3.RHEL4.3?arch=x86_64", }, }, }, { category: "product_version", name: "freeradius-0:1.0.1-3.RHEL4.3.x86_64", product: { name: "freeradius-0:1.0.1-3.RHEL4.3.x86_64", product_id: "freeradius-0:1.0.1-3.RHEL4.3.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/freeradius@1.0.1-3.RHEL4.3?arch=x86_64", }, }, }, { category: "product_version", name: "freeradius-mysql-0:1.0.1-3.RHEL4.3.x86_64", product: { name: "freeradius-mysql-0:1.0.1-3.RHEL4.3.x86_64", product_id: "freeradius-mysql-0:1.0.1-3.RHEL4.3.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/freeradius-mysql@1.0.1-3.RHEL4.3?arch=x86_64", }, }, }, { category: "product_version", name: "freeradius-debuginfo-0:1.0.1-3.RHEL4.3.x86_64", product: { name: "freeradius-debuginfo-0:1.0.1-3.RHEL4.3.x86_64", product_id: "freeradius-debuginfo-0:1.0.1-3.RHEL4.3.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/freeradius-debuginfo@1.0.1-3.RHEL4.3?arch=x86_64", }, }, }, ], category: "architecture", name: "x86_64", }, { branches: [ { category: "product_version", name: "freeradius-0:1.0.1-2.RHEL3.2.i386", product: { name: "freeradius-0:1.0.1-2.RHEL3.2.i386", product_id: "freeradius-0:1.0.1-2.RHEL3.2.i386", product_identification_helper: { purl: "pkg:rpm/redhat/freeradius@1.0.1-2.RHEL3.2?arch=i386", }, }, }, { category: "product_version", name: "freeradius-debuginfo-0:1.0.1-2.RHEL3.2.i386", product: { name: "freeradius-debuginfo-0:1.0.1-2.RHEL3.2.i386", product_id: "freeradius-debuginfo-0:1.0.1-2.RHEL3.2.i386", product_identification_helper: { purl: "pkg:rpm/redhat/freeradius-debuginfo@1.0.1-2.RHEL3.2?arch=i386", }, }, }, { category: "product_version", name: "freeradius-postgresql-0:1.0.1-3.RHEL4.3.i386", product: { name: "freeradius-postgresql-0:1.0.1-3.RHEL4.3.i386", product_id: "freeradius-postgresql-0:1.0.1-3.RHEL4.3.i386", product_identification_helper: { purl: "pkg:rpm/redhat/freeradius-postgresql@1.0.1-3.RHEL4.3?arch=i386", }, }, }, { category: "product_version", name: "freeradius-unixODBC-0:1.0.1-3.RHEL4.3.i386", product: { name: "freeradius-unixODBC-0:1.0.1-3.RHEL4.3.i386", product_id: "freeradius-unixODBC-0:1.0.1-3.RHEL4.3.i386", product_identification_helper: { purl: "pkg:rpm/redhat/freeradius-unixODBC@1.0.1-3.RHEL4.3?arch=i386", }, }, }, { category: "product_version", name: "freeradius-0:1.0.1-3.RHEL4.3.i386", product: { name: "freeradius-0:1.0.1-3.RHEL4.3.i386", product_id: "freeradius-0:1.0.1-3.RHEL4.3.i386", product_identification_helper: { purl: "pkg:rpm/redhat/freeradius@1.0.1-3.RHEL4.3?arch=i386", }, }, }, { category: "product_version", name: "freeradius-mysql-0:1.0.1-3.RHEL4.3.i386", product: { name: "freeradius-mysql-0:1.0.1-3.RHEL4.3.i386", product_id: "freeradius-mysql-0:1.0.1-3.RHEL4.3.i386", product_identification_helper: { purl: "pkg:rpm/redhat/freeradius-mysql@1.0.1-3.RHEL4.3?arch=i386", }, }, }, { category: "product_version", name: "freeradius-debuginfo-0:1.0.1-3.RHEL4.3.i386", product: { name: "freeradius-debuginfo-0:1.0.1-3.RHEL4.3.i386", product_id: "freeradius-debuginfo-0:1.0.1-3.RHEL4.3.i386", product_identification_helper: { purl: "pkg:rpm/redhat/freeradius-debuginfo@1.0.1-3.RHEL4.3?arch=i386", }, }, }, ], category: "architecture", name: "i386", }, { branches: [ { category: "product_version", name: "freeradius-0:1.0.1-2.RHEL3.2.ppc", product: { name: "freeradius-0:1.0.1-2.RHEL3.2.ppc", product_id: "freeradius-0:1.0.1-2.RHEL3.2.ppc", product_identification_helper: { purl: "pkg:rpm/redhat/freeradius@1.0.1-2.RHEL3.2?arch=ppc", }, }, }, { category: "product_version", name: "freeradius-debuginfo-0:1.0.1-2.RHEL3.2.ppc", product: { name: "freeradius-debuginfo-0:1.0.1-2.RHEL3.2.ppc", product_id: "freeradius-debuginfo-0:1.0.1-2.RHEL3.2.ppc", product_identification_helper: { purl: "pkg:rpm/redhat/freeradius-debuginfo@1.0.1-2.RHEL3.2?arch=ppc", }, }, }, { category: "product_version", name: "freeradius-postgresql-0:1.0.1-3.RHEL4.3.ppc", product: { name: "freeradius-postgresql-0:1.0.1-3.RHEL4.3.ppc", product_id: "freeradius-postgresql-0:1.0.1-3.RHEL4.3.ppc", product_identification_helper: { purl: "pkg:rpm/redhat/freeradius-postgresql@1.0.1-3.RHEL4.3?arch=ppc", }, }, }, { category: "product_version", name: "freeradius-unixODBC-0:1.0.1-3.RHEL4.3.ppc", product: { name: "freeradius-unixODBC-0:1.0.1-3.RHEL4.3.ppc", product_id: "freeradius-unixODBC-0:1.0.1-3.RHEL4.3.ppc", product_identification_helper: { purl: "pkg:rpm/redhat/freeradius-unixODBC@1.0.1-3.RHEL4.3?arch=ppc", }, }, }, { category: "product_version", name: "freeradius-0:1.0.1-3.RHEL4.3.ppc", product: { name: "freeradius-0:1.0.1-3.RHEL4.3.ppc", product_id: "freeradius-0:1.0.1-3.RHEL4.3.ppc", product_identification_helper: { purl: "pkg:rpm/redhat/freeradius@1.0.1-3.RHEL4.3?arch=ppc", }, }, }, { category: "product_version", name: "freeradius-mysql-0:1.0.1-3.RHEL4.3.ppc", product: { name: "freeradius-mysql-0:1.0.1-3.RHEL4.3.ppc", product_id: "freeradius-mysql-0:1.0.1-3.RHEL4.3.ppc", product_identification_helper: { purl: "pkg:rpm/redhat/freeradius-mysql@1.0.1-3.RHEL4.3?arch=ppc", }, }, }, { category: "product_version", name: "freeradius-debuginfo-0:1.0.1-3.RHEL4.3.ppc", product: { name: "freeradius-debuginfo-0:1.0.1-3.RHEL4.3.ppc", product_id: "freeradius-debuginfo-0:1.0.1-3.RHEL4.3.ppc", product_identification_helper: { purl: "pkg:rpm/redhat/freeradius-debuginfo@1.0.1-3.RHEL4.3?arch=ppc", }, }, }, ], category: "architecture", name: "ppc", }, { branches: [ { category: "product_version", name: "freeradius-0:1.0.1-2.RHEL3.2.s390x", product: { name: "freeradius-0:1.0.1-2.RHEL3.2.s390x", product_id: "freeradius-0:1.0.1-2.RHEL3.2.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/freeradius@1.0.1-2.RHEL3.2?arch=s390x", }, }, }, { category: "product_version", name: "freeradius-debuginfo-0:1.0.1-2.RHEL3.2.s390x", product: { name: "freeradius-debuginfo-0:1.0.1-2.RHEL3.2.s390x", product_id: "freeradius-debuginfo-0:1.0.1-2.RHEL3.2.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/freeradius-debuginfo@1.0.1-2.RHEL3.2?arch=s390x", }, }, }, { category: "product_version", name: "freeradius-postgresql-0:1.0.1-3.RHEL4.3.s390x", product: { name: "freeradius-postgresql-0:1.0.1-3.RHEL4.3.s390x", product_id: "freeradius-postgresql-0:1.0.1-3.RHEL4.3.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/freeradius-postgresql@1.0.1-3.RHEL4.3?arch=s390x", }, }, }, { category: "product_version", name: "freeradius-unixODBC-0:1.0.1-3.RHEL4.3.s390x", product: { name: "freeradius-unixODBC-0:1.0.1-3.RHEL4.3.s390x", product_id: "freeradius-unixODBC-0:1.0.1-3.RHEL4.3.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/freeradius-unixODBC@1.0.1-3.RHEL4.3?arch=s390x", }, }, }, { category: "product_version", name: "freeradius-0:1.0.1-3.RHEL4.3.s390x", product: { name: "freeradius-0:1.0.1-3.RHEL4.3.s390x", product_id: "freeradius-0:1.0.1-3.RHEL4.3.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/freeradius@1.0.1-3.RHEL4.3?arch=s390x", }, }, }, { category: "product_version", name: "freeradius-mysql-0:1.0.1-3.RHEL4.3.s390x", product: { name: "freeradius-mysql-0:1.0.1-3.RHEL4.3.s390x", product_id: "freeradius-mysql-0:1.0.1-3.RHEL4.3.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/freeradius-mysql@1.0.1-3.RHEL4.3?arch=s390x", }, }, }, { category: "product_version", name: "freeradius-debuginfo-0:1.0.1-3.RHEL4.3.s390x", product: { name: "freeradius-debuginfo-0:1.0.1-3.RHEL4.3.s390x", product_id: "freeradius-debuginfo-0:1.0.1-3.RHEL4.3.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/freeradius-debuginfo@1.0.1-3.RHEL4.3?arch=s390x", }, }, }, ], category: "architecture", name: "s390x", }, { branches: [ { category: "product_version", name: "freeradius-0:1.0.1-2.RHEL3.2.s390", product: { name: "freeradius-0:1.0.1-2.RHEL3.2.s390", product_id: "freeradius-0:1.0.1-2.RHEL3.2.s390", product_identification_helper: { purl: "pkg:rpm/redhat/freeradius@1.0.1-2.RHEL3.2?arch=s390", }, }, }, { category: "product_version", name: "freeradius-debuginfo-0:1.0.1-2.RHEL3.2.s390", product: { name: "freeradius-debuginfo-0:1.0.1-2.RHEL3.2.s390", product_id: "freeradius-debuginfo-0:1.0.1-2.RHEL3.2.s390", product_identification_helper: { purl: "pkg:rpm/redhat/freeradius-debuginfo@1.0.1-2.RHEL3.2?arch=s390", }, }, }, { category: "product_version", name: "freeradius-postgresql-0:1.0.1-3.RHEL4.3.s390", product: { name: "freeradius-postgresql-0:1.0.1-3.RHEL4.3.s390", product_id: "freeradius-postgresql-0:1.0.1-3.RHEL4.3.s390", product_identification_helper: { purl: "pkg:rpm/redhat/freeradius-postgresql@1.0.1-3.RHEL4.3?arch=s390", }, }, }, { category: "product_version", name: "freeradius-unixODBC-0:1.0.1-3.RHEL4.3.s390", product: { name: "freeradius-unixODBC-0:1.0.1-3.RHEL4.3.s390", product_id: "freeradius-unixODBC-0:1.0.1-3.RHEL4.3.s390", product_identification_helper: { purl: "pkg:rpm/redhat/freeradius-unixODBC@1.0.1-3.RHEL4.3?arch=s390", }, }, }, { category: "product_version", name: "freeradius-0:1.0.1-3.RHEL4.3.s390", product: { name: "freeradius-0:1.0.1-3.RHEL4.3.s390", product_id: "freeradius-0:1.0.1-3.RHEL4.3.s390", product_identification_helper: { purl: "pkg:rpm/redhat/freeradius@1.0.1-3.RHEL4.3?arch=s390", }, }, }, { category: "product_version", name: "freeradius-mysql-0:1.0.1-3.RHEL4.3.s390", product: { name: "freeradius-mysql-0:1.0.1-3.RHEL4.3.s390", product_id: "freeradius-mysql-0:1.0.1-3.RHEL4.3.s390", product_identification_helper: { purl: "pkg:rpm/redhat/freeradius-mysql@1.0.1-3.RHEL4.3?arch=s390", }, }, }, { category: "product_version", name: "freeradius-debuginfo-0:1.0.1-3.RHEL4.3.s390", product: { name: "freeradius-debuginfo-0:1.0.1-3.RHEL4.3.s390", product_id: "freeradius-debuginfo-0:1.0.1-3.RHEL4.3.s390", product_identification_helper: { purl: "pkg:rpm/redhat/freeradius-debuginfo@1.0.1-3.RHEL4.3?arch=s390", }, }, }, ], category: "architecture", name: "s390", }, ], category: "vendor", name: "Red Hat", }, ], relationships: [ { category: "default_component_of", full_product_name: { name: "freeradius-0:1.0.1-2.RHEL3.2.i386 as a component of Red Hat Enterprise Linux AS version 3", product_id: "3AS:freeradius-0:1.0.1-2.RHEL3.2.i386", }, product_reference: "freeradius-0:1.0.1-2.RHEL3.2.i386", relates_to_product_reference: "3AS", }, { category: "default_component_of", full_product_name: { name: "freeradius-0:1.0.1-2.RHEL3.2.ia64 as a component of Red Hat Enterprise Linux AS version 3", product_id: "3AS:freeradius-0:1.0.1-2.RHEL3.2.ia64", }, product_reference: "freeradius-0:1.0.1-2.RHEL3.2.ia64", relates_to_product_reference: "3AS", }, { category: "default_component_of", full_product_name: { name: "freeradius-0:1.0.1-2.RHEL3.2.ppc as a component of Red Hat Enterprise Linux AS version 3", product_id: "3AS:freeradius-0:1.0.1-2.RHEL3.2.ppc", }, product_reference: "freeradius-0:1.0.1-2.RHEL3.2.ppc", relates_to_product_reference: "3AS", }, { category: "default_component_of", full_product_name: { name: "freeradius-0:1.0.1-2.RHEL3.2.s390 as a component of Red Hat Enterprise Linux AS version 3", product_id: "3AS:freeradius-0:1.0.1-2.RHEL3.2.s390", }, product_reference: "freeradius-0:1.0.1-2.RHEL3.2.s390", relates_to_product_reference: "3AS", }, { category: "default_component_of", full_product_name: { name: "freeradius-0:1.0.1-2.RHEL3.2.s390x as a component of Red Hat Enterprise Linux AS version 3", product_id: "3AS:freeradius-0:1.0.1-2.RHEL3.2.s390x", }, product_reference: "freeradius-0:1.0.1-2.RHEL3.2.s390x", relates_to_product_reference: "3AS", }, { category: "default_component_of", full_product_name: { name: "freeradius-0:1.0.1-2.RHEL3.2.src as a component of Red Hat Enterprise Linux AS version 3", product_id: "3AS:freeradius-0:1.0.1-2.RHEL3.2.src", }, product_reference: "freeradius-0:1.0.1-2.RHEL3.2.src", relates_to_product_reference: "3AS", }, { category: "default_component_of", full_product_name: { name: "freeradius-0:1.0.1-2.RHEL3.2.x86_64 as a component of Red Hat Enterprise Linux AS version 3", product_id: "3AS:freeradius-0:1.0.1-2.RHEL3.2.x86_64", }, product_reference: "freeradius-0:1.0.1-2.RHEL3.2.x86_64", relates_to_product_reference: "3AS", }, { category: "default_component_of", full_product_name: { name: "freeradius-debuginfo-0:1.0.1-2.RHEL3.2.i386 as a component of Red Hat Enterprise Linux AS version 3", product_id: "3AS:freeradius-debuginfo-0:1.0.1-2.RHEL3.2.i386", }, product_reference: "freeradius-debuginfo-0:1.0.1-2.RHEL3.2.i386", relates_to_product_reference: "3AS", }, { category: "default_component_of", full_product_name: { name: "freeradius-debuginfo-0:1.0.1-2.RHEL3.2.ia64 as a component of Red Hat Enterprise Linux AS version 3", product_id: "3AS:freeradius-debuginfo-0:1.0.1-2.RHEL3.2.ia64", }, product_reference: "freeradius-debuginfo-0:1.0.1-2.RHEL3.2.ia64", relates_to_product_reference: "3AS", }, { category: "default_component_of", full_product_name: { name: "freeradius-debuginfo-0:1.0.1-2.RHEL3.2.ppc as a component of Red Hat Enterprise Linux AS version 3", product_id: "3AS:freeradius-debuginfo-0:1.0.1-2.RHEL3.2.ppc", }, product_reference: "freeradius-debuginfo-0:1.0.1-2.RHEL3.2.ppc", relates_to_product_reference: "3AS", }, { category: "default_component_of", full_product_name: { name: "freeradius-debuginfo-0:1.0.1-2.RHEL3.2.s390 as a component of Red Hat Enterprise Linux AS version 3", product_id: "3AS:freeradius-debuginfo-0:1.0.1-2.RHEL3.2.s390", }, product_reference: "freeradius-debuginfo-0:1.0.1-2.RHEL3.2.s390", relates_to_product_reference: "3AS", }, { category: "default_component_of", full_product_name: { name: "freeradius-debuginfo-0:1.0.1-2.RHEL3.2.s390x as a component of Red Hat Enterprise Linux AS version 3", product_id: "3AS:freeradius-debuginfo-0:1.0.1-2.RHEL3.2.s390x", }, product_reference: "freeradius-debuginfo-0:1.0.1-2.RHEL3.2.s390x", relates_to_product_reference: "3AS", }, { category: "default_component_of", full_product_name: { name: "freeradius-debuginfo-0:1.0.1-2.RHEL3.2.x86_64 as a component of Red Hat Enterprise Linux AS version 3", product_id: "3AS:freeradius-debuginfo-0:1.0.1-2.RHEL3.2.x86_64", }, product_reference: "freeradius-debuginfo-0:1.0.1-2.RHEL3.2.x86_64", relates_to_product_reference: "3AS", }, { category: "default_component_of", full_product_name: { name: "freeradius-0:1.0.1-2.RHEL3.2.i386 as a component of Red Hat Enterprise Linux ES version 3", product_id: "3ES:freeradius-0:1.0.1-2.RHEL3.2.i386", }, product_reference: "freeradius-0:1.0.1-2.RHEL3.2.i386", relates_to_product_reference: "3ES", }, { category: "default_component_of", full_product_name: { name: "freeradius-0:1.0.1-2.RHEL3.2.ia64 as a component of Red Hat Enterprise Linux ES version 3", product_id: "3ES:freeradius-0:1.0.1-2.RHEL3.2.ia64", }, product_reference: "freeradius-0:1.0.1-2.RHEL3.2.ia64", relates_to_product_reference: "3ES", }, { category: "default_component_of", full_product_name: { name: "freeradius-0:1.0.1-2.RHEL3.2.ppc as a component of Red Hat Enterprise Linux ES version 3", product_id: "3ES:freeradius-0:1.0.1-2.RHEL3.2.ppc", }, product_reference: "freeradius-0:1.0.1-2.RHEL3.2.ppc", relates_to_product_reference: "3ES", }, { category: "default_component_of", full_product_name: { name: "freeradius-0:1.0.1-2.RHEL3.2.s390 as a component of Red Hat Enterprise Linux ES version 3", product_id: "3ES:freeradius-0:1.0.1-2.RHEL3.2.s390", }, product_reference: "freeradius-0:1.0.1-2.RHEL3.2.s390", relates_to_product_reference: "3ES", }, { category: "default_component_of", full_product_name: { name: "freeradius-0:1.0.1-2.RHEL3.2.s390x as a component of Red Hat Enterprise Linux ES version 3", product_id: "3ES:freeradius-0:1.0.1-2.RHEL3.2.s390x", }, product_reference: "freeradius-0:1.0.1-2.RHEL3.2.s390x", relates_to_product_reference: "3ES", }, { category: "default_component_of", full_product_name: { name: "freeradius-0:1.0.1-2.RHEL3.2.src as a component of Red Hat Enterprise Linux ES version 3", product_id: "3ES:freeradius-0:1.0.1-2.RHEL3.2.src", }, product_reference: "freeradius-0:1.0.1-2.RHEL3.2.src", relates_to_product_reference: "3ES", }, { category: "default_component_of", full_product_name: { name: "freeradius-0:1.0.1-2.RHEL3.2.x86_64 as a component of Red Hat Enterprise Linux ES version 3", product_id: "3ES:freeradius-0:1.0.1-2.RHEL3.2.x86_64", }, product_reference: "freeradius-0:1.0.1-2.RHEL3.2.x86_64", relates_to_product_reference: "3ES", }, { category: "default_component_of", full_product_name: { name: "freeradius-debuginfo-0:1.0.1-2.RHEL3.2.i386 as a component of Red Hat Enterprise Linux ES version 3", product_id: "3ES:freeradius-debuginfo-0:1.0.1-2.RHEL3.2.i386", }, product_reference: "freeradius-debuginfo-0:1.0.1-2.RHEL3.2.i386", relates_to_product_reference: "3ES", }, { category: "default_component_of", full_product_name: { name: "freeradius-debuginfo-0:1.0.1-2.RHEL3.2.ia64 as a component of Red Hat Enterprise Linux ES version 3", product_id: "3ES:freeradius-debuginfo-0:1.0.1-2.RHEL3.2.ia64", }, product_reference: "freeradius-debuginfo-0:1.0.1-2.RHEL3.2.ia64", relates_to_product_reference: "3ES", }, { category: "default_component_of", full_product_name: { name: "freeradius-debuginfo-0:1.0.1-2.RHEL3.2.ppc as a component of Red Hat Enterprise Linux ES version 3", product_id: "3ES:freeradius-debuginfo-0:1.0.1-2.RHEL3.2.ppc", }, product_reference: "freeradius-debuginfo-0:1.0.1-2.RHEL3.2.ppc", relates_to_product_reference: "3ES", }, { category: "default_component_of", full_product_name: { name: "freeradius-debuginfo-0:1.0.1-2.RHEL3.2.s390 as a component of Red Hat Enterprise Linux ES version 3", product_id: "3ES:freeradius-debuginfo-0:1.0.1-2.RHEL3.2.s390", }, product_reference: "freeradius-debuginfo-0:1.0.1-2.RHEL3.2.s390", relates_to_product_reference: "3ES", }, { category: "default_component_of", full_product_name: { name: "freeradius-debuginfo-0:1.0.1-2.RHEL3.2.s390x as a component of Red Hat Enterprise Linux ES version 3", product_id: "3ES:freeradius-debuginfo-0:1.0.1-2.RHEL3.2.s390x", }, product_reference: "freeradius-debuginfo-0:1.0.1-2.RHEL3.2.s390x", relates_to_product_reference: "3ES", }, { category: "default_component_of", full_product_name: { name: "freeradius-debuginfo-0:1.0.1-2.RHEL3.2.x86_64 as a component of Red Hat Enterprise Linux ES version 3", product_id: "3ES:freeradius-debuginfo-0:1.0.1-2.RHEL3.2.x86_64", }, product_reference: "freeradius-debuginfo-0:1.0.1-2.RHEL3.2.x86_64", relates_to_product_reference: "3ES", }, { category: "default_component_of", full_product_name: { name: "freeradius-0:1.0.1-3.RHEL4.3.i386 as a component of Red Hat Enterprise Linux AS version 4", product_id: "4AS:freeradius-0:1.0.1-3.RHEL4.3.i386", }, product_reference: "freeradius-0:1.0.1-3.RHEL4.3.i386", relates_to_product_reference: "4AS", }, { category: "default_component_of", full_product_name: { name: "freeradius-0:1.0.1-3.RHEL4.3.ia64 as a component of Red Hat Enterprise Linux AS version 4", product_id: "4AS:freeradius-0:1.0.1-3.RHEL4.3.ia64", }, product_reference: "freeradius-0:1.0.1-3.RHEL4.3.ia64", relates_to_product_reference: "4AS", }, { category: "default_component_of", full_product_name: { name: "freeradius-0:1.0.1-3.RHEL4.3.ppc as a component of Red Hat Enterprise Linux AS version 4", product_id: "4AS:freeradius-0:1.0.1-3.RHEL4.3.ppc", }, product_reference: "freeradius-0:1.0.1-3.RHEL4.3.ppc", relates_to_product_reference: "4AS", }, { category: "default_component_of", full_product_name: { name: "freeradius-0:1.0.1-3.RHEL4.3.s390 as a component of Red Hat Enterprise Linux AS version 4", product_id: "4AS:freeradius-0:1.0.1-3.RHEL4.3.s390", }, product_reference: "freeradius-0:1.0.1-3.RHEL4.3.s390", relates_to_product_reference: "4AS", }, { category: "default_component_of", full_product_name: { name: "freeradius-0:1.0.1-3.RHEL4.3.s390x as a component of Red Hat Enterprise Linux AS version 4", product_id: "4AS:freeradius-0:1.0.1-3.RHEL4.3.s390x", }, product_reference: "freeradius-0:1.0.1-3.RHEL4.3.s390x", relates_to_product_reference: "4AS", }, { category: "default_component_of", full_product_name: { name: "freeradius-0:1.0.1-3.RHEL4.3.src as a component of Red Hat Enterprise Linux AS version 4", product_id: "4AS:freeradius-0:1.0.1-3.RHEL4.3.src", }, product_reference: "freeradius-0:1.0.1-3.RHEL4.3.src", relates_to_product_reference: "4AS", }, { category: "default_component_of", full_product_name: { name: "freeradius-0:1.0.1-3.RHEL4.3.x86_64 as a component of Red Hat Enterprise Linux AS version 4", product_id: "4AS:freeradius-0:1.0.1-3.RHEL4.3.x86_64", }, product_reference: "freeradius-0:1.0.1-3.RHEL4.3.x86_64", relates_to_product_reference: "4AS", }, { category: "default_component_of", full_product_name: { name: "freeradius-debuginfo-0:1.0.1-3.RHEL4.3.i386 as a component of Red Hat Enterprise Linux AS version 4", product_id: "4AS:freeradius-debuginfo-0:1.0.1-3.RHEL4.3.i386", }, product_reference: "freeradius-debuginfo-0:1.0.1-3.RHEL4.3.i386", relates_to_product_reference: "4AS", }, { category: "default_component_of", full_product_name: { name: "freeradius-debuginfo-0:1.0.1-3.RHEL4.3.ia64 as a component of Red Hat Enterprise Linux AS version 4", product_id: "4AS:freeradius-debuginfo-0:1.0.1-3.RHEL4.3.ia64", }, product_reference: "freeradius-debuginfo-0:1.0.1-3.RHEL4.3.ia64", relates_to_product_reference: "4AS", }, { category: "default_component_of", full_product_name: { name: "freeradius-debuginfo-0:1.0.1-3.RHEL4.3.ppc as a component of Red Hat Enterprise Linux AS version 4", product_id: "4AS:freeradius-debuginfo-0:1.0.1-3.RHEL4.3.ppc", }, product_reference: "freeradius-debuginfo-0:1.0.1-3.RHEL4.3.ppc", relates_to_product_reference: "4AS", }, { category: "default_component_of", full_product_name: { name: "freeradius-debuginfo-0:1.0.1-3.RHEL4.3.s390 as a component of Red Hat Enterprise Linux AS version 4", product_id: "4AS:freeradius-debuginfo-0:1.0.1-3.RHEL4.3.s390", }, product_reference: "freeradius-debuginfo-0:1.0.1-3.RHEL4.3.s390", relates_to_product_reference: "4AS", }, { category: "default_component_of", full_product_name: { name: "freeradius-debuginfo-0:1.0.1-3.RHEL4.3.s390x as a component of Red Hat Enterprise Linux AS version 4", product_id: "4AS:freeradius-debuginfo-0:1.0.1-3.RHEL4.3.s390x", }, product_reference: "freeradius-debuginfo-0:1.0.1-3.RHEL4.3.s390x", relates_to_product_reference: "4AS", }, { category: "default_component_of", full_product_name: { name: "freeradius-debuginfo-0:1.0.1-3.RHEL4.3.x86_64 as a component of Red Hat Enterprise Linux AS version 4", product_id: "4AS:freeradius-debuginfo-0:1.0.1-3.RHEL4.3.x86_64", }, product_reference: "freeradius-debuginfo-0:1.0.1-3.RHEL4.3.x86_64", relates_to_product_reference: "4AS", }, { category: "default_component_of", full_product_name: { name: "freeradius-mysql-0:1.0.1-3.RHEL4.3.i386 as a component of Red Hat Enterprise Linux AS version 4", product_id: "4AS:freeradius-mysql-0:1.0.1-3.RHEL4.3.i386", }, product_reference: "freeradius-mysql-0:1.0.1-3.RHEL4.3.i386", relates_to_product_reference: "4AS", }, { category: "default_component_of", full_product_name: { name: "freeradius-mysql-0:1.0.1-3.RHEL4.3.ia64 as a component of Red Hat Enterprise Linux AS version 4", product_id: "4AS:freeradius-mysql-0:1.0.1-3.RHEL4.3.ia64", }, product_reference: "freeradius-mysql-0:1.0.1-3.RHEL4.3.ia64", relates_to_product_reference: "4AS", }, { category: "default_component_of", full_product_name: { name: "freeradius-mysql-0:1.0.1-3.RHEL4.3.ppc as a component of Red Hat Enterprise Linux AS version 4", product_id: "4AS:freeradius-mysql-0:1.0.1-3.RHEL4.3.ppc", }, product_reference: "freeradius-mysql-0:1.0.1-3.RHEL4.3.ppc", relates_to_product_reference: "4AS", }, { category: "default_component_of", full_product_name: { name: "freeradius-mysql-0:1.0.1-3.RHEL4.3.s390 as a component of Red Hat Enterprise Linux AS version 4", product_id: "4AS:freeradius-mysql-0:1.0.1-3.RHEL4.3.s390", }, product_reference: "freeradius-mysql-0:1.0.1-3.RHEL4.3.s390", relates_to_product_reference: "4AS", }, { category: "default_component_of", full_product_name: { name: "freeradius-mysql-0:1.0.1-3.RHEL4.3.s390x as a component of Red Hat Enterprise Linux AS version 4", product_id: "4AS:freeradius-mysql-0:1.0.1-3.RHEL4.3.s390x", }, product_reference: "freeradius-mysql-0:1.0.1-3.RHEL4.3.s390x", relates_to_product_reference: "4AS", }, { category: "default_component_of", full_product_name: { name: "freeradius-mysql-0:1.0.1-3.RHEL4.3.x86_64 as a component of Red Hat Enterprise Linux AS version 4", product_id: "4AS:freeradius-mysql-0:1.0.1-3.RHEL4.3.x86_64", }, product_reference: "freeradius-mysql-0:1.0.1-3.RHEL4.3.x86_64", relates_to_product_reference: "4AS", }, { category: "default_component_of", full_product_name: { name: "freeradius-postgresql-0:1.0.1-3.RHEL4.3.i386 as a component of Red Hat Enterprise Linux AS version 4", product_id: "4AS:freeradius-postgresql-0:1.0.1-3.RHEL4.3.i386", }, product_reference: "freeradius-postgresql-0:1.0.1-3.RHEL4.3.i386", relates_to_product_reference: "4AS", }, { category: "default_component_of", full_product_name: { name: "freeradius-postgresql-0:1.0.1-3.RHEL4.3.ia64 as a component of Red Hat Enterprise Linux AS version 4", product_id: "4AS:freeradius-postgresql-0:1.0.1-3.RHEL4.3.ia64", }, product_reference: "freeradius-postgresql-0:1.0.1-3.RHEL4.3.ia64", relates_to_product_reference: "4AS", }, { category: "default_component_of", full_product_name: { name: "freeradius-postgresql-0:1.0.1-3.RHEL4.3.ppc as a component of Red Hat Enterprise Linux AS version 4", product_id: "4AS:freeradius-postgresql-0:1.0.1-3.RHEL4.3.ppc", }, product_reference: "freeradius-postgresql-0:1.0.1-3.RHEL4.3.ppc", relates_to_product_reference: "4AS", }, { category: "default_component_of", full_product_name: { name: "freeradius-postgresql-0:1.0.1-3.RHEL4.3.s390 as a component of Red Hat Enterprise Linux AS version 4", product_id: "4AS:freeradius-postgresql-0:1.0.1-3.RHEL4.3.s390", }, product_reference: "freeradius-postgresql-0:1.0.1-3.RHEL4.3.s390", relates_to_product_reference: "4AS", }, { category: "default_component_of", full_product_name: { name: "freeradius-postgresql-0:1.0.1-3.RHEL4.3.s390x as a component of Red Hat Enterprise Linux AS version 4", product_id: "4AS:freeradius-postgresql-0:1.0.1-3.RHEL4.3.s390x", }, product_reference: "freeradius-postgresql-0:1.0.1-3.RHEL4.3.s390x", relates_to_product_reference: "4AS", }, { category: "default_component_of", full_product_name: { name: "freeradius-postgresql-0:1.0.1-3.RHEL4.3.x86_64 as a component of Red Hat Enterprise Linux AS version 4", product_id: "4AS:freeradius-postgresql-0:1.0.1-3.RHEL4.3.x86_64", }, product_reference: "freeradius-postgresql-0:1.0.1-3.RHEL4.3.x86_64", relates_to_product_reference: "4AS", }, { category: "default_component_of", full_product_name: { name: "freeradius-unixODBC-0:1.0.1-3.RHEL4.3.i386 as a component of Red Hat Enterprise Linux AS version 4", product_id: "4AS:freeradius-unixODBC-0:1.0.1-3.RHEL4.3.i386", }, product_reference: "freeradius-unixODBC-0:1.0.1-3.RHEL4.3.i386", relates_to_product_reference: "4AS", }, { category: "default_component_of", full_product_name: { name: "freeradius-unixODBC-0:1.0.1-3.RHEL4.3.ia64 as a component of Red Hat Enterprise Linux AS version 4", product_id: "4AS:freeradius-unixODBC-0:1.0.1-3.RHEL4.3.ia64", }, product_reference: "freeradius-unixODBC-0:1.0.1-3.RHEL4.3.ia64", relates_to_product_reference: "4AS", }, { category: "default_component_of", full_product_name: { name: "freeradius-unixODBC-0:1.0.1-3.RHEL4.3.ppc as a component of Red Hat Enterprise Linux AS version 4", product_id: "4AS:freeradius-unixODBC-0:1.0.1-3.RHEL4.3.ppc", }, product_reference: "freeradius-unixODBC-0:1.0.1-3.RHEL4.3.ppc", relates_to_product_reference: "4AS", }, { category: "default_component_of", full_product_name: { name: "freeradius-unixODBC-0:1.0.1-3.RHEL4.3.s390 as a component of Red Hat Enterprise Linux AS version 4", product_id: "4AS:freeradius-unixODBC-0:1.0.1-3.RHEL4.3.s390", }, product_reference: "freeradius-unixODBC-0:1.0.1-3.RHEL4.3.s390", relates_to_product_reference: "4AS", }, { category: "default_component_of", full_product_name: { name: "freeradius-unixODBC-0:1.0.1-3.RHEL4.3.s390x as a component of Red Hat Enterprise Linux AS version 4", product_id: "4AS:freeradius-unixODBC-0:1.0.1-3.RHEL4.3.s390x", }, product_reference: "freeradius-unixODBC-0:1.0.1-3.RHEL4.3.s390x", relates_to_product_reference: "4AS", }, { category: "default_component_of", full_product_name: { name: "freeradius-unixODBC-0:1.0.1-3.RHEL4.3.x86_64 as a component of Red Hat Enterprise Linux AS version 4", product_id: "4AS:freeradius-unixODBC-0:1.0.1-3.RHEL4.3.x86_64", }, product_reference: "freeradius-unixODBC-0:1.0.1-3.RHEL4.3.x86_64", relates_to_product_reference: "4AS", }, { category: "default_component_of", full_product_name: { name: "freeradius-0:1.0.1-3.RHEL4.3.i386 as a component of Red Hat Enterprise Linux ES version 4", product_id: "4ES:freeradius-0:1.0.1-3.RHEL4.3.i386", }, product_reference: "freeradius-0:1.0.1-3.RHEL4.3.i386", relates_to_product_reference: "4ES", }, { category: "default_component_of", full_product_name: { name: "freeradius-0:1.0.1-3.RHEL4.3.ia64 as a component of Red Hat Enterprise Linux ES version 4", product_id: "4ES:freeradius-0:1.0.1-3.RHEL4.3.ia64", }, product_reference: "freeradius-0:1.0.1-3.RHEL4.3.ia64", relates_to_product_reference: "4ES", }, { category: "default_component_of", full_product_name: { name: "freeradius-0:1.0.1-3.RHEL4.3.ppc as a component of Red Hat Enterprise Linux ES version 4", product_id: "4ES:freeradius-0:1.0.1-3.RHEL4.3.ppc", }, product_reference: "freeradius-0:1.0.1-3.RHEL4.3.ppc", relates_to_product_reference: "4ES", }, { category: "default_component_of", full_product_name: { name: "freeradius-0:1.0.1-3.RHEL4.3.s390 as a component of Red Hat Enterprise Linux ES version 4", product_id: "4ES:freeradius-0:1.0.1-3.RHEL4.3.s390", }, product_reference: "freeradius-0:1.0.1-3.RHEL4.3.s390", relates_to_product_reference: "4ES", }, { category: "default_component_of", full_product_name: { name: "freeradius-0:1.0.1-3.RHEL4.3.s390x as a component of Red Hat Enterprise Linux ES version 4", product_id: "4ES:freeradius-0:1.0.1-3.RHEL4.3.s390x", }, product_reference: "freeradius-0:1.0.1-3.RHEL4.3.s390x", relates_to_product_reference: "4ES", }, { category: "default_component_of", full_product_name: { name: "freeradius-0:1.0.1-3.RHEL4.3.src as a component of Red Hat Enterprise Linux ES version 4", product_id: "4ES:freeradius-0:1.0.1-3.RHEL4.3.src", }, product_reference: "freeradius-0:1.0.1-3.RHEL4.3.src", relates_to_product_reference: "4ES", }, { category: "default_component_of", full_product_name: { name: "freeradius-0:1.0.1-3.RHEL4.3.x86_64 as a component of Red Hat Enterprise Linux ES version 4", product_id: "4ES:freeradius-0:1.0.1-3.RHEL4.3.x86_64", }, product_reference: "freeradius-0:1.0.1-3.RHEL4.3.x86_64", relates_to_product_reference: "4ES", }, { category: "default_component_of", full_product_name: { name: "freeradius-debuginfo-0:1.0.1-3.RHEL4.3.i386 as a component of Red Hat Enterprise Linux ES version 4", product_id: "4ES:freeradius-debuginfo-0:1.0.1-3.RHEL4.3.i386", }, product_reference: "freeradius-debuginfo-0:1.0.1-3.RHEL4.3.i386", relates_to_product_reference: "4ES", }, { category: "default_component_of", full_product_name: { name: "freeradius-debuginfo-0:1.0.1-3.RHEL4.3.ia64 as a component of Red Hat Enterprise Linux ES version 4", product_id: "4ES:freeradius-debuginfo-0:1.0.1-3.RHEL4.3.ia64", }, product_reference: "freeradius-debuginfo-0:1.0.1-3.RHEL4.3.ia64", relates_to_product_reference: "4ES", }, { category: "default_component_of", full_product_name: { name: "freeradius-debuginfo-0:1.0.1-3.RHEL4.3.ppc as a component of Red Hat Enterprise Linux ES version 4", product_id: "4ES:freeradius-debuginfo-0:1.0.1-3.RHEL4.3.ppc", }, product_reference: "freeradius-debuginfo-0:1.0.1-3.RHEL4.3.ppc", relates_to_product_reference: "4ES", }, { category: "default_component_of", full_product_name: { name: "freeradius-debuginfo-0:1.0.1-3.RHEL4.3.s390 as a component of Red Hat Enterprise Linux ES version 4", product_id: "4ES:freeradius-debuginfo-0:1.0.1-3.RHEL4.3.s390", }, product_reference: "freeradius-debuginfo-0:1.0.1-3.RHEL4.3.s390", relates_to_product_reference: "4ES", }, { category: "default_component_of", full_product_name: { name: "freeradius-debuginfo-0:1.0.1-3.RHEL4.3.s390x as a component of Red Hat Enterprise Linux ES version 4", product_id: "4ES:freeradius-debuginfo-0:1.0.1-3.RHEL4.3.s390x", }, product_reference: "freeradius-debuginfo-0:1.0.1-3.RHEL4.3.s390x", relates_to_product_reference: "4ES", }, { category: "default_component_of", full_product_name: { name: "freeradius-debuginfo-0:1.0.1-3.RHEL4.3.x86_64 as a component of Red Hat Enterprise Linux ES version 4", product_id: "4ES:freeradius-debuginfo-0:1.0.1-3.RHEL4.3.x86_64", }, product_reference: "freeradius-debuginfo-0:1.0.1-3.RHEL4.3.x86_64", relates_to_product_reference: "4ES", }, { category: "default_component_of", full_product_name: { name: "freeradius-mysql-0:1.0.1-3.RHEL4.3.i386 as a component of Red Hat Enterprise Linux ES version 4", product_id: "4ES:freeradius-mysql-0:1.0.1-3.RHEL4.3.i386", }, product_reference: "freeradius-mysql-0:1.0.1-3.RHEL4.3.i386", relates_to_product_reference: "4ES", }, { category: "default_component_of", full_product_name: { name: "freeradius-mysql-0:1.0.1-3.RHEL4.3.ia64 as a component of Red Hat Enterprise Linux ES version 4", product_id: "4ES:freeradius-mysql-0:1.0.1-3.RHEL4.3.ia64", }, product_reference: "freeradius-mysql-0:1.0.1-3.RHEL4.3.ia64", relates_to_product_reference: "4ES", }, { category: "default_component_of", full_product_name: { name: "freeradius-mysql-0:1.0.1-3.RHEL4.3.ppc as a component of Red Hat Enterprise Linux ES version 4", product_id: "4ES:freeradius-mysql-0:1.0.1-3.RHEL4.3.ppc", }, product_reference: "freeradius-mysql-0:1.0.1-3.RHEL4.3.ppc", relates_to_product_reference: "4ES", }, { category: "default_component_of", full_product_name: { name: "freeradius-mysql-0:1.0.1-3.RHEL4.3.s390 as a component of Red Hat Enterprise Linux ES version 4", product_id: "4ES:freeradius-mysql-0:1.0.1-3.RHEL4.3.s390", }, product_reference: "freeradius-mysql-0:1.0.1-3.RHEL4.3.s390", relates_to_product_reference: "4ES", }, { category: "default_component_of", full_product_name: { name: "freeradius-mysql-0:1.0.1-3.RHEL4.3.s390x as a component of Red Hat Enterprise Linux ES version 4", product_id: "4ES:freeradius-mysql-0:1.0.1-3.RHEL4.3.s390x", }, product_reference: "freeradius-mysql-0:1.0.1-3.RHEL4.3.s390x", relates_to_product_reference: "4ES", }, { category: "default_component_of", full_product_name: { name: "freeradius-mysql-0:1.0.1-3.RHEL4.3.x86_64 as a component of Red Hat Enterprise Linux ES version 4", product_id: "4ES:freeradius-mysql-0:1.0.1-3.RHEL4.3.x86_64", }, product_reference: "freeradius-mysql-0:1.0.1-3.RHEL4.3.x86_64", relates_to_product_reference: "4ES", }, { category: "default_component_of", full_product_name: { name: "freeradius-postgresql-0:1.0.1-3.RHEL4.3.i386 as a component of Red Hat Enterprise Linux ES version 4", product_id: "4ES:freeradius-postgresql-0:1.0.1-3.RHEL4.3.i386", }, product_reference: "freeradius-postgresql-0:1.0.1-3.RHEL4.3.i386", relates_to_product_reference: "4ES", }, { category: "default_component_of", full_product_name: { name: "freeradius-postgresql-0:1.0.1-3.RHEL4.3.ia64 as a component of Red Hat Enterprise Linux ES version 4", product_id: "4ES:freeradius-postgresql-0:1.0.1-3.RHEL4.3.ia64", }, product_reference: "freeradius-postgresql-0:1.0.1-3.RHEL4.3.ia64", relates_to_product_reference: "4ES", }, { category: "default_component_of", full_product_name: { name: "freeradius-postgresql-0:1.0.1-3.RHEL4.3.ppc as a component of Red Hat Enterprise Linux ES version 4", product_id: "4ES:freeradius-postgresql-0:1.0.1-3.RHEL4.3.ppc", }, product_reference: "freeradius-postgresql-0:1.0.1-3.RHEL4.3.ppc", relates_to_product_reference: "4ES", }, { category: "default_component_of", full_product_name: { name: "freeradius-postgresql-0:1.0.1-3.RHEL4.3.s390 as a component of Red Hat Enterprise Linux ES version 4", product_id: "4ES:freeradius-postgresql-0:1.0.1-3.RHEL4.3.s390", }, product_reference: "freeradius-postgresql-0:1.0.1-3.RHEL4.3.s390", relates_to_product_reference: "4ES", }, { category: "default_component_of", full_product_name: { name: "freeradius-postgresql-0:1.0.1-3.RHEL4.3.s390x as a component of Red Hat Enterprise Linux ES version 4", product_id: "4ES:freeradius-postgresql-0:1.0.1-3.RHEL4.3.s390x", }, product_reference: "freeradius-postgresql-0:1.0.1-3.RHEL4.3.s390x", relates_to_product_reference: "4ES", }, { category: "default_component_of", full_product_name: { name: "freeradius-postgresql-0:1.0.1-3.RHEL4.3.x86_64 as a component of Red Hat Enterprise Linux ES version 4", product_id: "4ES:freeradius-postgresql-0:1.0.1-3.RHEL4.3.x86_64", }, product_reference: "freeradius-postgresql-0:1.0.1-3.RHEL4.3.x86_64", relates_to_product_reference: "4ES", }, { category: "default_component_of", full_product_name: { name: "freeradius-unixODBC-0:1.0.1-3.RHEL4.3.i386 as a component of Red Hat Enterprise Linux ES version 4", product_id: "4ES:freeradius-unixODBC-0:1.0.1-3.RHEL4.3.i386", }, product_reference: "freeradius-unixODBC-0:1.0.1-3.RHEL4.3.i386", relates_to_product_reference: "4ES", }, { category: "default_component_of", full_product_name: { name: "freeradius-unixODBC-0:1.0.1-3.RHEL4.3.ia64 as a component of Red Hat Enterprise Linux ES version 4", product_id: "4ES:freeradius-unixODBC-0:1.0.1-3.RHEL4.3.ia64", }, product_reference: "freeradius-unixODBC-0:1.0.1-3.RHEL4.3.ia64", relates_to_product_reference: "4ES", }, { category: "default_component_of", full_product_name: { name: "freeradius-unixODBC-0:1.0.1-3.RHEL4.3.ppc as a component of Red Hat Enterprise Linux ES version 4", product_id: "4ES:freeradius-unixODBC-0:1.0.1-3.RHEL4.3.ppc", }, product_reference: "freeradius-unixODBC-0:1.0.1-3.RHEL4.3.ppc", relates_to_product_reference: "4ES", }, { category: "default_component_of", full_product_name: { name: "freeradius-unixODBC-0:1.0.1-3.RHEL4.3.s390 as a component of Red Hat Enterprise Linux ES version 4", product_id: "4ES:freeradius-unixODBC-0:1.0.1-3.RHEL4.3.s390", }, product_reference: "freeradius-unixODBC-0:1.0.1-3.RHEL4.3.s390", relates_to_product_reference: "4ES", }, { category: "default_component_of", full_product_name: { name: "freeradius-unixODBC-0:1.0.1-3.RHEL4.3.s390x as a component of Red Hat Enterprise Linux ES version 4", product_id: "4ES:freeradius-unixODBC-0:1.0.1-3.RHEL4.3.s390x", }, product_reference: "freeradius-unixODBC-0:1.0.1-3.RHEL4.3.s390x", relates_to_product_reference: "4ES", }, { category: "default_component_of", full_product_name: { name: "freeradius-unixODBC-0:1.0.1-3.RHEL4.3.x86_64 as a component of Red Hat Enterprise Linux ES version 4", product_id: "4ES:freeradius-unixODBC-0:1.0.1-3.RHEL4.3.x86_64", }, product_reference: "freeradius-unixODBC-0:1.0.1-3.RHEL4.3.x86_64", relates_to_product_reference: "4ES", }, ], }, vulnerabilities: [ { cve: "CVE-2005-4744", discovery_date: "2005-05-01T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1617862", }, ], notes: [ { category: "description", text: "Off-by-one error in the sql_error function in sql_unixodbc.c in FreeRADIUS 1.0.2.5-5, and possibly other versions including 1.0.4, might allow remote attackers to cause a denial of service (crash) and possibly execute arbitrary code by causing the external database query to fail. NOTE: this single issue is part of a larger-scale disclosure, originally by SUSE, which reported multiple issues that were disputed by FreeRADIUS. Disputed issues included file descriptor leaks, memory disclosure, LDAP injection, and other issues. Without additional information, the most recent FreeRADIUS report is being regarded as the authoritative source for this CVE identifier.", title: "Vulnerability description", }, { category: "summary", text: "security flaw", title: "Vulnerability summary", }, ], product_status: { fixed: [ "3AS:freeradius-0:1.0.1-2.RHEL3.2.i386", "3AS:freeradius-0:1.0.1-2.RHEL3.2.ia64", "3AS:freeradius-0:1.0.1-2.RHEL3.2.ppc", "3AS:freeradius-0:1.0.1-2.RHEL3.2.s390", "3AS:freeradius-0:1.0.1-2.RHEL3.2.s390x", "3AS:freeradius-0:1.0.1-2.RHEL3.2.src", "3AS:freeradius-0:1.0.1-2.RHEL3.2.x86_64", "3AS:freeradius-debuginfo-0:1.0.1-2.RHEL3.2.i386", "3AS:freeradius-debuginfo-0:1.0.1-2.RHEL3.2.ia64", "3AS:freeradius-debuginfo-0:1.0.1-2.RHEL3.2.ppc", "3AS:freeradius-debuginfo-0:1.0.1-2.RHEL3.2.s390", "3AS:freeradius-debuginfo-0:1.0.1-2.RHEL3.2.s390x", "3AS:freeradius-debuginfo-0:1.0.1-2.RHEL3.2.x86_64", "3ES:freeradius-0:1.0.1-2.RHEL3.2.i386", "3ES:freeradius-0:1.0.1-2.RHEL3.2.ia64", "3ES:freeradius-0:1.0.1-2.RHEL3.2.ppc", "3ES:freeradius-0:1.0.1-2.RHEL3.2.s390", "3ES:freeradius-0:1.0.1-2.RHEL3.2.s390x", "3ES:freeradius-0:1.0.1-2.RHEL3.2.src", "3ES:freeradius-0:1.0.1-2.RHEL3.2.x86_64", "3ES:freeradius-debuginfo-0:1.0.1-2.RHEL3.2.i386", "3ES:freeradius-debuginfo-0:1.0.1-2.RHEL3.2.ia64", "3ES:freeradius-debuginfo-0:1.0.1-2.RHEL3.2.ppc", "3ES:freeradius-debuginfo-0:1.0.1-2.RHEL3.2.s390", "3ES:freeradius-debuginfo-0:1.0.1-2.RHEL3.2.s390x", "3ES:freeradius-debuginfo-0:1.0.1-2.RHEL3.2.x86_64", "4AS:freeradius-0:1.0.1-3.RHEL4.3.i386", "4AS:freeradius-0:1.0.1-3.RHEL4.3.ia64", "4AS:freeradius-0:1.0.1-3.RHEL4.3.ppc", "4AS:freeradius-0:1.0.1-3.RHEL4.3.s390", "4AS:freeradius-0:1.0.1-3.RHEL4.3.s390x", "4AS:freeradius-0:1.0.1-3.RHEL4.3.src", "4AS:freeradius-0:1.0.1-3.RHEL4.3.x86_64", "4AS:freeradius-debuginfo-0:1.0.1-3.RHEL4.3.i386", "4AS:freeradius-debuginfo-0:1.0.1-3.RHEL4.3.ia64", "4AS:freeradius-debuginfo-0:1.0.1-3.RHEL4.3.ppc", "4AS:freeradius-debuginfo-0:1.0.1-3.RHEL4.3.s390", "4AS:freeradius-debuginfo-0:1.0.1-3.RHEL4.3.s390x", "4AS:freeradius-debuginfo-0:1.0.1-3.RHEL4.3.x86_64", "4AS:freeradius-mysql-0:1.0.1-3.RHEL4.3.i386", "4AS:freeradius-mysql-0:1.0.1-3.RHEL4.3.ia64", "4AS:freeradius-mysql-0:1.0.1-3.RHEL4.3.ppc", "4AS:freeradius-mysql-0:1.0.1-3.RHEL4.3.s390", "4AS:freeradius-mysql-0:1.0.1-3.RHEL4.3.s390x", "4AS:freeradius-mysql-0:1.0.1-3.RHEL4.3.x86_64", "4AS:freeradius-postgresql-0:1.0.1-3.RHEL4.3.i386", "4AS:freeradius-postgresql-0:1.0.1-3.RHEL4.3.ia64", "4AS:freeradius-postgresql-0:1.0.1-3.RHEL4.3.ppc", "4AS:freeradius-postgresql-0:1.0.1-3.RHEL4.3.s390", "4AS:freeradius-postgresql-0:1.0.1-3.RHEL4.3.s390x", "4AS:freeradius-postgresql-0:1.0.1-3.RHEL4.3.x86_64", "4AS:freeradius-unixODBC-0:1.0.1-3.RHEL4.3.i386", "4AS:freeradius-unixODBC-0:1.0.1-3.RHEL4.3.ia64", "4AS:freeradius-unixODBC-0:1.0.1-3.RHEL4.3.ppc", "4AS:freeradius-unixODBC-0:1.0.1-3.RHEL4.3.s390", "4AS:freeradius-unixODBC-0:1.0.1-3.RHEL4.3.s390x", "4AS:freeradius-unixODBC-0:1.0.1-3.RHEL4.3.x86_64", "4ES:freeradius-0:1.0.1-3.RHEL4.3.i386", "4ES:freeradius-0:1.0.1-3.RHEL4.3.ia64", "4ES:freeradius-0:1.0.1-3.RHEL4.3.ppc", "4ES:freeradius-0:1.0.1-3.RHEL4.3.s390", "4ES:freeradius-0:1.0.1-3.RHEL4.3.s390x", "4ES:freeradius-0:1.0.1-3.RHEL4.3.src", "4ES:freeradius-0:1.0.1-3.RHEL4.3.x86_64", "4ES:freeradius-debuginfo-0:1.0.1-3.RHEL4.3.i386", "4ES:freeradius-debuginfo-0:1.0.1-3.RHEL4.3.ia64", "4ES:freeradius-debuginfo-0:1.0.1-3.RHEL4.3.ppc", "4ES:freeradius-debuginfo-0:1.0.1-3.RHEL4.3.s390", "4ES:freeradius-debuginfo-0:1.0.1-3.RHEL4.3.s390x", "4ES:freeradius-debuginfo-0:1.0.1-3.RHEL4.3.x86_64", "4ES:freeradius-mysql-0:1.0.1-3.RHEL4.3.i386", "4ES:freeradius-mysql-0:1.0.1-3.RHEL4.3.ia64", "4ES:freeradius-mysql-0:1.0.1-3.RHEL4.3.ppc", "4ES:freeradius-mysql-0:1.0.1-3.RHEL4.3.s390", "4ES:freeradius-mysql-0:1.0.1-3.RHEL4.3.s390x", "4ES:freeradius-mysql-0:1.0.1-3.RHEL4.3.x86_64", "4ES:freeradius-postgresql-0:1.0.1-3.RHEL4.3.i386", "4ES:freeradius-postgresql-0:1.0.1-3.RHEL4.3.ia64", "4ES:freeradius-postgresql-0:1.0.1-3.RHEL4.3.ppc", "4ES:freeradius-postgresql-0:1.0.1-3.RHEL4.3.s390", "4ES:freeradius-postgresql-0:1.0.1-3.RHEL4.3.s390x", "4ES:freeradius-postgresql-0:1.0.1-3.RHEL4.3.x86_64", "4ES:freeradius-unixODBC-0:1.0.1-3.RHEL4.3.i386", "4ES:freeradius-unixODBC-0:1.0.1-3.RHEL4.3.ia64", "4ES:freeradius-unixODBC-0:1.0.1-3.RHEL4.3.ppc", "4ES:freeradius-unixODBC-0:1.0.1-3.RHEL4.3.s390", "4ES:freeradius-unixODBC-0:1.0.1-3.RHEL4.3.s390x", "4ES:freeradius-unixODBC-0:1.0.1-3.RHEL4.3.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2005-4744", }, { category: "external", summary: "RHBZ#1617862", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1617862", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2005-4744", url: "https://www.cve.org/CVERecord?id=CVE-2005-4744", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2005-4744", url: "https://nvd.nist.gov/vuln/detail/CVE-2005-4744", }, ], release_date: "2005-09-09T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2006-04-04T08:51:00+00:00", details: "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via Red Hat Network. To use Red Hat Network,\nlaunch the Red Hat Update Agent with the following command:\n\nup2date\n\nThis will start an interactive process that will result in the appropriate\nRPMs being upgraded on your system.", product_ids: [ "3AS:freeradius-0:1.0.1-2.RHEL3.2.i386", "3AS:freeradius-0:1.0.1-2.RHEL3.2.ia64", "3AS:freeradius-0:1.0.1-2.RHEL3.2.ppc", "3AS:freeradius-0:1.0.1-2.RHEL3.2.s390", "3AS:freeradius-0:1.0.1-2.RHEL3.2.s390x", "3AS:freeradius-0:1.0.1-2.RHEL3.2.src", "3AS:freeradius-0:1.0.1-2.RHEL3.2.x86_64", "3AS:freeradius-debuginfo-0:1.0.1-2.RHEL3.2.i386", "3AS:freeradius-debuginfo-0:1.0.1-2.RHEL3.2.ia64", "3AS:freeradius-debuginfo-0:1.0.1-2.RHEL3.2.ppc", "3AS:freeradius-debuginfo-0:1.0.1-2.RHEL3.2.s390", "3AS:freeradius-debuginfo-0:1.0.1-2.RHEL3.2.s390x", "3AS:freeradius-debuginfo-0:1.0.1-2.RHEL3.2.x86_64", "3ES:freeradius-0:1.0.1-2.RHEL3.2.i386", "3ES:freeradius-0:1.0.1-2.RHEL3.2.ia64", "3ES:freeradius-0:1.0.1-2.RHEL3.2.ppc", "3ES:freeradius-0:1.0.1-2.RHEL3.2.s390", "3ES:freeradius-0:1.0.1-2.RHEL3.2.s390x", "3ES:freeradius-0:1.0.1-2.RHEL3.2.src", "3ES:freeradius-0:1.0.1-2.RHEL3.2.x86_64", "3ES:freeradius-debuginfo-0:1.0.1-2.RHEL3.2.i386", "3ES:freeradius-debuginfo-0:1.0.1-2.RHEL3.2.ia64", "3ES:freeradius-debuginfo-0:1.0.1-2.RHEL3.2.ppc", "3ES:freeradius-debuginfo-0:1.0.1-2.RHEL3.2.s390", "3ES:freeradius-debuginfo-0:1.0.1-2.RHEL3.2.s390x", "3ES:freeradius-debuginfo-0:1.0.1-2.RHEL3.2.x86_64", "4AS:freeradius-0:1.0.1-3.RHEL4.3.i386", "4AS:freeradius-0:1.0.1-3.RHEL4.3.ia64", "4AS:freeradius-0:1.0.1-3.RHEL4.3.ppc", "4AS:freeradius-0:1.0.1-3.RHEL4.3.s390", "4AS:freeradius-0:1.0.1-3.RHEL4.3.s390x", "4AS:freeradius-0:1.0.1-3.RHEL4.3.src", "4AS:freeradius-0:1.0.1-3.RHEL4.3.x86_64", "4AS:freeradius-debuginfo-0:1.0.1-3.RHEL4.3.i386", "4AS:freeradius-debuginfo-0:1.0.1-3.RHEL4.3.ia64", "4AS:freeradius-debuginfo-0:1.0.1-3.RHEL4.3.ppc", "4AS:freeradius-debuginfo-0:1.0.1-3.RHEL4.3.s390", "4AS:freeradius-debuginfo-0:1.0.1-3.RHEL4.3.s390x", "4AS:freeradius-debuginfo-0:1.0.1-3.RHEL4.3.x86_64", "4AS:freeradius-mysql-0:1.0.1-3.RHEL4.3.i386", "4AS:freeradius-mysql-0:1.0.1-3.RHEL4.3.ia64", "4AS:freeradius-mysql-0:1.0.1-3.RHEL4.3.ppc", "4AS:freeradius-mysql-0:1.0.1-3.RHEL4.3.s390", "4AS:freeradius-mysql-0:1.0.1-3.RHEL4.3.s390x", "4AS:freeradius-mysql-0:1.0.1-3.RHEL4.3.x86_64", "4AS:freeradius-postgresql-0:1.0.1-3.RHEL4.3.i386", "4AS:freeradius-postgresql-0:1.0.1-3.RHEL4.3.ia64", "4AS:freeradius-postgresql-0:1.0.1-3.RHEL4.3.ppc", "4AS:freeradius-postgresql-0:1.0.1-3.RHEL4.3.s390", "4AS:freeradius-postgresql-0:1.0.1-3.RHEL4.3.s390x", "4AS:freeradius-postgresql-0:1.0.1-3.RHEL4.3.x86_64", "4AS:freeradius-unixODBC-0:1.0.1-3.RHEL4.3.i386", "4AS:freeradius-unixODBC-0:1.0.1-3.RHEL4.3.ia64", "4AS:freeradius-unixODBC-0:1.0.1-3.RHEL4.3.ppc", "4AS:freeradius-unixODBC-0:1.0.1-3.RHEL4.3.s390", "4AS:freeradius-unixODBC-0:1.0.1-3.RHEL4.3.s390x", "4AS:freeradius-unixODBC-0:1.0.1-3.RHEL4.3.x86_64", "4ES:freeradius-0:1.0.1-3.RHEL4.3.i386", "4ES:freeradius-0:1.0.1-3.RHEL4.3.ia64", "4ES:freeradius-0:1.0.1-3.RHEL4.3.ppc", "4ES:freeradius-0:1.0.1-3.RHEL4.3.s390", "4ES:freeradius-0:1.0.1-3.RHEL4.3.s390x", "4ES:freeradius-0:1.0.1-3.RHEL4.3.src", "4ES:freeradius-0:1.0.1-3.RHEL4.3.x86_64", "4ES:freeradius-debuginfo-0:1.0.1-3.RHEL4.3.i386", "4ES:freeradius-debuginfo-0:1.0.1-3.RHEL4.3.ia64", "4ES:freeradius-debuginfo-0:1.0.1-3.RHEL4.3.ppc", "4ES:freeradius-debuginfo-0:1.0.1-3.RHEL4.3.s390", "4ES:freeradius-debuginfo-0:1.0.1-3.RHEL4.3.s390x", "4ES:freeradius-debuginfo-0:1.0.1-3.RHEL4.3.x86_64", "4ES:freeradius-mysql-0:1.0.1-3.RHEL4.3.i386", "4ES:freeradius-mysql-0:1.0.1-3.RHEL4.3.ia64", "4ES:freeradius-mysql-0:1.0.1-3.RHEL4.3.ppc", "4ES:freeradius-mysql-0:1.0.1-3.RHEL4.3.s390", "4ES:freeradius-mysql-0:1.0.1-3.RHEL4.3.s390x", "4ES:freeradius-mysql-0:1.0.1-3.RHEL4.3.x86_64", "4ES:freeradius-postgresql-0:1.0.1-3.RHEL4.3.i386", "4ES:freeradius-postgresql-0:1.0.1-3.RHEL4.3.ia64", "4ES:freeradius-postgresql-0:1.0.1-3.RHEL4.3.ppc", "4ES:freeradius-postgresql-0:1.0.1-3.RHEL4.3.s390", "4ES:freeradius-postgresql-0:1.0.1-3.RHEL4.3.s390x", "4ES:freeradius-postgresql-0:1.0.1-3.RHEL4.3.x86_64", "4ES:freeradius-unixODBC-0:1.0.1-3.RHEL4.3.i386", "4ES:freeradius-unixODBC-0:1.0.1-3.RHEL4.3.ia64", "4ES:freeradius-unixODBC-0:1.0.1-3.RHEL4.3.ppc", "4ES:freeradius-unixODBC-0:1.0.1-3.RHEL4.3.s390", "4ES:freeradius-unixODBC-0:1.0.1-3.RHEL4.3.s390x", "4ES:freeradius-unixODBC-0:1.0.1-3.RHEL4.3.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2006:0271", }, ], threats: [ { category: "impact", details: "Low", }, ], title: "security flaw", }, { cve: "CVE-2006-1354", discovery_date: "2006-03-21T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1618034", }, ], notes: [ { category: "description", text: "Unspecified vulnerability in FreeRADIUS 1.0.0 up to 1.1.0 allows remote attackers to bypass authentication or cause a denial of service (server crash) via \"Insufficient input validation\" in the EAP-MSCHAPv2 state machine module.", title: "Vulnerability description", }, { category: "summary", text: "security flaw", title: "Vulnerability summary", }, ], product_status: { fixed: [ "3AS:freeradius-0:1.0.1-2.RHEL3.2.i386", "3AS:freeradius-0:1.0.1-2.RHEL3.2.ia64", "3AS:freeradius-0:1.0.1-2.RHEL3.2.ppc", "3AS:freeradius-0:1.0.1-2.RHEL3.2.s390", "3AS:freeradius-0:1.0.1-2.RHEL3.2.s390x", "3AS:freeradius-0:1.0.1-2.RHEL3.2.src", "3AS:freeradius-0:1.0.1-2.RHEL3.2.x86_64", "3AS:freeradius-debuginfo-0:1.0.1-2.RHEL3.2.i386", "3AS:freeradius-debuginfo-0:1.0.1-2.RHEL3.2.ia64", "3AS:freeradius-debuginfo-0:1.0.1-2.RHEL3.2.ppc", "3AS:freeradius-debuginfo-0:1.0.1-2.RHEL3.2.s390", "3AS:freeradius-debuginfo-0:1.0.1-2.RHEL3.2.s390x", "3AS:freeradius-debuginfo-0:1.0.1-2.RHEL3.2.x86_64", "3ES:freeradius-0:1.0.1-2.RHEL3.2.i386", "3ES:freeradius-0:1.0.1-2.RHEL3.2.ia64", "3ES:freeradius-0:1.0.1-2.RHEL3.2.ppc", "3ES:freeradius-0:1.0.1-2.RHEL3.2.s390", "3ES:freeradius-0:1.0.1-2.RHEL3.2.s390x", "3ES:freeradius-0:1.0.1-2.RHEL3.2.src", "3ES:freeradius-0:1.0.1-2.RHEL3.2.x86_64", "3ES:freeradius-debuginfo-0:1.0.1-2.RHEL3.2.i386", "3ES:freeradius-debuginfo-0:1.0.1-2.RHEL3.2.ia64", "3ES:freeradius-debuginfo-0:1.0.1-2.RHEL3.2.ppc", "3ES:freeradius-debuginfo-0:1.0.1-2.RHEL3.2.s390", "3ES:freeradius-debuginfo-0:1.0.1-2.RHEL3.2.s390x", "3ES:freeradius-debuginfo-0:1.0.1-2.RHEL3.2.x86_64", "4AS:freeradius-0:1.0.1-3.RHEL4.3.i386", "4AS:freeradius-0:1.0.1-3.RHEL4.3.ia64", "4AS:freeradius-0:1.0.1-3.RHEL4.3.ppc", "4AS:freeradius-0:1.0.1-3.RHEL4.3.s390", "4AS:freeradius-0:1.0.1-3.RHEL4.3.s390x", "4AS:freeradius-0:1.0.1-3.RHEL4.3.src", "4AS:freeradius-0:1.0.1-3.RHEL4.3.x86_64", "4AS:freeradius-debuginfo-0:1.0.1-3.RHEL4.3.i386", "4AS:freeradius-debuginfo-0:1.0.1-3.RHEL4.3.ia64", "4AS:freeradius-debuginfo-0:1.0.1-3.RHEL4.3.ppc", "4AS:freeradius-debuginfo-0:1.0.1-3.RHEL4.3.s390", "4AS:freeradius-debuginfo-0:1.0.1-3.RHEL4.3.s390x", "4AS:freeradius-debuginfo-0:1.0.1-3.RHEL4.3.x86_64", "4AS:freeradius-mysql-0:1.0.1-3.RHEL4.3.i386", "4AS:freeradius-mysql-0:1.0.1-3.RHEL4.3.ia64", "4AS:freeradius-mysql-0:1.0.1-3.RHEL4.3.ppc", "4AS:freeradius-mysql-0:1.0.1-3.RHEL4.3.s390", "4AS:freeradius-mysql-0:1.0.1-3.RHEL4.3.s390x", "4AS:freeradius-mysql-0:1.0.1-3.RHEL4.3.x86_64", "4AS:freeradius-postgresql-0:1.0.1-3.RHEL4.3.i386", "4AS:freeradius-postgresql-0:1.0.1-3.RHEL4.3.ia64", "4AS:freeradius-postgresql-0:1.0.1-3.RHEL4.3.ppc", "4AS:freeradius-postgresql-0:1.0.1-3.RHEL4.3.s390", "4AS:freeradius-postgresql-0:1.0.1-3.RHEL4.3.s390x", "4AS:freeradius-postgresql-0:1.0.1-3.RHEL4.3.x86_64", "4AS:freeradius-unixODBC-0:1.0.1-3.RHEL4.3.i386", "4AS:freeradius-unixODBC-0:1.0.1-3.RHEL4.3.ia64", "4AS:freeradius-unixODBC-0:1.0.1-3.RHEL4.3.ppc", "4AS:freeradius-unixODBC-0:1.0.1-3.RHEL4.3.s390", "4AS:freeradius-unixODBC-0:1.0.1-3.RHEL4.3.s390x", "4AS:freeradius-unixODBC-0:1.0.1-3.RHEL4.3.x86_64", "4ES:freeradius-0:1.0.1-3.RHEL4.3.i386", "4ES:freeradius-0:1.0.1-3.RHEL4.3.ia64", "4ES:freeradius-0:1.0.1-3.RHEL4.3.ppc", "4ES:freeradius-0:1.0.1-3.RHEL4.3.s390", "4ES:freeradius-0:1.0.1-3.RHEL4.3.s390x", "4ES:freeradius-0:1.0.1-3.RHEL4.3.src", "4ES:freeradius-0:1.0.1-3.RHEL4.3.x86_64", "4ES:freeradius-debuginfo-0:1.0.1-3.RHEL4.3.i386", "4ES:freeradius-debuginfo-0:1.0.1-3.RHEL4.3.ia64", "4ES:freeradius-debuginfo-0:1.0.1-3.RHEL4.3.ppc", "4ES:freeradius-debuginfo-0:1.0.1-3.RHEL4.3.s390", "4ES:freeradius-debuginfo-0:1.0.1-3.RHEL4.3.s390x", "4ES:freeradius-debuginfo-0:1.0.1-3.RHEL4.3.x86_64", "4ES:freeradius-mysql-0:1.0.1-3.RHEL4.3.i386", "4ES:freeradius-mysql-0:1.0.1-3.RHEL4.3.ia64", "4ES:freeradius-mysql-0:1.0.1-3.RHEL4.3.ppc", "4ES:freeradius-mysql-0:1.0.1-3.RHEL4.3.s390", "4ES:freeradius-mysql-0:1.0.1-3.RHEL4.3.s390x", "4ES:freeradius-mysql-0:1.0.1-3.RHEL4.3.x86_64", "4ES:freeradius-postgresql-0:1.0.1-3.RHEL4.3.i386", "4ES:freeradius-postgresql-0:1.0.1-3.RHEL4.3.ia64", "4ES:freeradius-postgresql-0:1.0.1-3.RHEL4.3.ppc", "4ES:freeradius-postgresql-0:1.0.1-3.RHEL4.3.s390", "4ES:freeradius-postgresql-0:1.0.1-3.RHEL4.3.s390x", "4ES:freeradius-postgresql-0:1.0.1-3.RHEL4.3.x86_64", "4ES:freeradius-unixODBC-0:1.0.1-3.RHEL4.3.i386", "4ES:freeradius-unixODBC-0:1.0.1-3.RHEL4.3.ia64", "4ES:freeradius-unixODBC-0:1.0.1-3.RHEL4.3.ppc", "4ES:freeradius-unixODBC-0:1.0.1-3.RHEL4.3.s390", "4ES:freeradius-unixODBC-0:1.0.1-3.RHEL4.3.s390x", "4ES:freeradius-unixODBC-0:1.0.1-3.RHEL4.3.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2006-1354", }, { category: "external", summary: "RHBZ#1618034", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1618034", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2006-1354", url: "https://www.cve.org/CVERecord?id=CVE-2006-1354", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2006-1354", url: "https://nvd.nist.gov/vuln/detail/CVE-2006-1354", }, ], release_date: "2006-03-20T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2006-04-04T08:51:00+00:00", details: "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via Red Hat Network. To use Red Hat Network,\nlaunch the Red Hat Update Agent with the following command:\n\nup2date\n\nThis will start an interactive process that will result in the appropriate\nRPMs being upgraded on your system.", product_ids: [ "3AS:freeradius-0:1.0.1-2.RHEL3.2.i386", "3AS:freeradius-0:1.0.1-2.RHEL3.2.ia64", "3AS:freeradius-0:1.0.1-2.RHEL3.2.ppc", "3AS:freeradius-0:1.0.1-2.RHEL3.2.s390", "3AS:freeradius-0:1.0.1-2.RHEL3.2.s390x", "3AS:freeradius-0:1.0.1-2.RHEL3.2.src", "3AS:freeradius-0:1.0.1-2.RHEL3.2.x86_64", "3AS:freeradius-debuginfo-0:1.0.1-2.RHEL3.2.i386", "3AS:freeradius-debuginfo-0:1.0.1-2.RHEL3.2.ia64", "3AS:freeradius-debuginfo-0:1.0.1-2.RHEL3.2.ppc", "3AS:freeradius-debuginfo-0:1.0.1-2.RHEL3.2.s390", "3AS:freeradius-debuginfo-0:1.0.1-2.RHEL3.2.s390x", "3AS:freeradius-debuginfo-0:1.0.1-2.RHEL3.2.x86_64", "3ES:freeradius-0:1.0.1-2.RHEL3.2.i386", "3ES:freeradius-0:1.0.1-2.RHEL3.2.ia64", "3ES:freeradius-0:1.0.1-2.RHEL3.2.ppc", "3ES:freeradius-0:1.0.1-2.RHEL3.2.s390", "3ES:freeradius-0:1.0.1-2.RHEL3.2.s390x", "3ES:freeradius-0:1.0.1-2.RHEL3.2.src", "3ES:freeradius-0:1.0.1-2.RHEL3.2.x86_64", "3ES:freeradius-debuginfo-0:1.0.1-2.RHEL3.2.i386", "3ES:freeradius-debuginfo-0:1.0.1-2.RHEL3.2.ia64", "3ES:freeradius-debuginfo-0:1.0.1-2.RHEL3.2.ppc", "3ES:freeradius-debuginfo-0:1.0.1-2.RHEL3.2.s390", "3ES:freeradius-debuginfo-0:1.0.1-2.RHEL3.2.s390x", "3ES:freeradius-debuginfo-0:1.0.1-2.RHEL3.2.x86_64", "4AS:freeradius-0:1.0.1-3.RHEL4.3.i386", "4AS:freeradius-0:1.0.1-3.RHEL4.3.ia64", "4AS:freeradius-0:1.0.1-3.RHEL4.3.ppc", "4AS:freeradius-0:1.0.1-3.RHEL4.3.s390", "4AS:freeradius-0:1.0.1-3.RHEL4.3.s390x", "4AS:freeradius-0:1.0.1-3.RHEL4.3.src", "4AS:freeradius-0:1.0.1-3.RHEL4.3.x86_64", "4AS:freeradius-debuginfo-0:1.0.1-3.RHEL4.3.i386", "4AS:freeradius-debuginfo-0:1.0.1-3.RHEL4.3.ia64", "4AS:freeradius-debuginfo-0:1.0.1-3.RHEL4.3.ppc", "4AS:freeradius-debuginfo-0:1.0.1-3.RHEL4.3.s390", "4AS:freeradius-debuginfo-0:1.0.1-3.RHEL4.3.s390x", "4AS:freeradius-debuginfo-0:1.0.1-3.RHEL4.3.x86_64", "4AS:freeradius-mysql-0:1.0.1-3.RHEL4.3.i386", "4AS:freeradius-mysql-0:1.0.1-3.RHEL4.3.ia64", "4AS:freeradius-mysql-0:1.0.1-3.RHEL4.3.ppc", "4AS:freeradius-mysql-0:1.0.1-3.RHEL4.3.s390", "4AS:freeradius-mysql-0:1.0.1-3.RHEL4.3.s390x", "4AS:freeradius-mysql-0:1.0.1-3.RHEL4.3.x86_64", "4AS:freeradius-postgresql-0:1.0.1-3.RHEL4.3.i386", "4AS:freeradius-postgresql-0:1.0.1-3.RHEL4.3.ia64", "4AS:freeradius-postgresql-0:1.0.1-3.RHEL4.3.ppc", "4AS:freeradius-postgresql-0:1.0.1-3.RHEL4.3.s390", "4AS:freeradius-postgresql-0:1.0.1-3.RHEL4.3.s390x", "4AS:freeradius-postgresql-0:1.0.1-3.RHEL4.3.x86_64", "4AS:freeradius-unixODBC-0:1.0.1-3.RHEL4.3.i386", "4AS:freeradius-unixODBC-0:1.0.1-3.RHEL4.3.ia64", "4AS:freeradius-unixODBC-0:1.0.1-3.RHEL4.3.ppc", "4AS:freeradius-unixODBC-0:1.0.1-3.RHEL4.3.s390", "4AS:freeradius-unixODBC-0:1.0.1-3.RHEL4.3.s390x", "4AS:freeradius-unixODBC-0:1.0.1-3.RHEL4.3.x86_64", "4ES:freeradius-0:1.0.1-3.RHEL4.3.i386", "4ES:freeradius-0:1.0.1-3.RHEL4.3.ia64", "4ES:freeradius-0:1.0.1-3.RHEL4.3.ppc", "4ES:freeradius-0:1.0.1-3.RHEL4.3.s390", "4ES:freeradius-0:1.0.1-3.RHEL4.3.s390x", "4ES:freeradius-0:1.0.1-3.RHEL4.3.src", "4ES:freeradius-0:1.0.1-3.RHEL4.3.x86_64", "4ES:freeradius-debuginfo-0:1.0.1-3.RHEL4.3.i386", "4ES:freeradius-debuginfo-0:1.0.1-3.RHEL4.3.ia64", "4ES:freeradius-debuginfo-0:1.0.1-3.RHEL4.3.ppc", "4ES:freeradius-debuginfo-0:1.0.1-3.RHEL4.3.s390", "4ES:freeradius-debuginfo-0:1.0.1-3.RHEL4.3.s390x", "4ES:freeradius-debuginfo-0:1.0.1-3.RHEL4.3.x86_64", "4ES:freeradius-mysql-0:1.0.1-3.RHEL4.3.i386", "4ES:freeradius-mysql-0:1.0.1-3.RHEL4.3.ia64", "4ES:freeradius-mysql-0:1.0.1-3.RHEL4.3.ppc", "4ES:freeradius-mysql-0:1.0.1-3.RHEL4.3.s390", "4ES:freeradius-mysql-0:1.0.1-3.RHEL4.3.s390x", "4ES:freeradius-mysql-0:1.0.1-3.RHEL4.3.x86_64", "4ES:freeradius-postgresql-0:1.0.1-3.RHEL4.3.i386", "4ES:freeradius-postgresql-0:1.0.1-3.RHEL4.3.ia64", "4ES:freeradius-postgresql-0:1.0.1-3.RHEL4.3.ppc", "4ES:freeradius-postgresql-0:1.0.1-3.RHEL4.3.s390", "4ES:freeradius-postgresql-0:1.0.1-3.RHEL4.3.s390x", "4ES:freeradius-postgresql-0:1.0.1-3.RHEL4.3.x86_64", "4ES:freeradius-unixODBC-0:1.0.1-3.RHEL4.3.i386", "4ES:freeradius-unixODBC-0:1.0.1-3.RHEL4.3.ia64", "4ES:freeradius-unixODBC-0:1.0.1-3.RHEL4.3.ppc", "4ES:freeradius-unixODBC-0:1.0.1-3.RHEL4.3.s390", "4ES:freeradius-unixODBC-0:1.0.1-3.RHEL4.3.s390x", "4ES:freeradius-unixODBC-0:1.0.1-3.RHEL4.3.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2006:0271", }, ], threats: [ { category: "impact", details: "Important", }, ], title: "security flaw", }, ], }
fkie_cve-2006-1354
Vulnerability from fkie_nvd
Published
2006-03-22 02:02
Modified
2025-04-03 01:03
Severity ?
Summary
Unspecified vulnerability in FreeRADIUS 1.0.0 up to 1.1.0 allows remote attackers to bypass authentication or cause a denial of service (server crash) via "Insufficient input validation" in the EAP-MSCHAPv2 state machine module.
References
Impacted products
| Vendor | Product | Version | |
|---|---|---|---|
| freeradius | freeradius | 1.0.0 | |
| freeradius | freeradius | 1.0.1 | |
| freeradius | freeradius | 1.0.2 | |
| freeradius | freeradius | 1.0.3 | |
| freeradius | freeradius | 1.0.4 | |
| freeradius | freeradius | 1.0.5 | |
| freeradius | freeradius | 1.1.0 |
{ configurations: [ { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:a:freeradius:freeradius:1.0.0:*:*:*:*:*:*:*", matchCriteriaId: "49152208-4DBD-4AF7-BCB3-3D56650899F7", vulnerable: true, }, { criteria: "cpe:2.3:a:freeradius:freeradius:1.0.1:*:*:*:*:*:*:*", matchCriteriaId: "90AF846A-F239-4963-B260-7CB48334B8B4", vulnerable: true, }, { criteria: "cpe:2.3:a:freeradius:freeradius:1.0.2:*:*:*:*:*:*:*", matchCriteriaId: "E95ADE53-BFBE-4B06-A1BF-EF576D567554", vulnerable: true, }, { criteria: "cpe:2.3:a:freeradius:freeradius:1.0.3:*:*:*:*:*:*:*", matchCriteriaId: "3F03F8FE-80BA-41A3-85CE-FFB6A18E6DCE", vulnerable: true, }, { criteria: "cpe:2.3:a:freeradius:freeradius:1.0.4:*:*:*:*:*:*:*", matchCriteriaId: "4C48FE12-68CB-462D-B75E-204894325F5D", vulnerable: true, }, { criteria: "cpe:2.3:a:freeradius:freeradius:1.0.5:*:*:*:*:*:*:*", matchCriteriaId: "1321F1E7-4B14-4B16-91D0-AE9E9951D12A", vulnerable: true, }, { criteria: "cpe:2.3:a:freeradius:freeradius:1.1.0:*:*:*:*:*:*:*", matchCriteriaId: "313EFEC5-1580-4ACE-BB9C-84E3714F2C37", vulnerable: true, }, ], negate: false, operator: "OR", }, ], }, ], cveTags: [], descriptions: [ { lang: "en", value: "Unspecified vulnerability in FreeRADIUS 1.0.0 up to 1.1.0 allows remote attackers to bypass authentication or cause a denial of service (server crash) via \"Insufficient input validation\" in the EAP-MSCHAPv2 state machine module.", }, ], id: "CVE-2006-1354", lastModified: "2025-04-03T01:03:51.193", metrics: { cvssMetricV2: [ { acInsufInfo: false, baseSeverity: "HIGH", cvssData: { accessComplexity: "LOW", accessVector: "NETWORK", authentication: "NONE", availabilityImpact: "PARTIAL", baseScore: 7.5, confidentialityImpact: "PARTIAL", integrityImpact: "PARTIAL", vectorString: "AV:N/AC:L/Au:N/C:P/I:P/A:P", version: "2.0", }, exploitabilityScore: 10, impactScore: 6.4, obtainAllPrivilege: false, obtainOtherPrivilege: true, obtainUserPrivilege: false, source: "nvd@nist.gov", type: "Primary", userInteractionRequired: false, }, ], }, published: "2006-03-22T02:02:00.000", references: [ { source: "cve@mitre.org", url: "ftp://patches.sgi.com/support/free/security/advisories/20060404-01-U.asc", }, { source: "cve@mitre.org", url: "http://lists.suse.de/archive/suse-security-announce/2006-Mar/0009.html", }, { source: "cve@mitre.org", url: "http://rhn.redhat.com/errata/RHSA-2006-0271.html", }, { source: "cve@mitre.org", tags: [ "Patch", "Vendor Advisory", ], url: "http://secunia.com/advisories/19300", }, { source: "cve@mitre.org", url: "http://secunia.com/advisories/19405", }, { source: "cve@mitre.org", url: "http://secunia.com/advisories/19518", }, { source: "cve@mitre.org", url: "http://secunia.com/advisories/19527", }, { source: "cve@mitre.org", url: "http://secunia.com/advisories/19811", }, { source: "cve@mitre.org", url: "http://secunia.com/advisories/20461", }, { source: "cve@mitre.org", url: "http://securitytracker.com/id?1015795", }, { source: "cve@mitre.org", url: "http://www.debian.org/security/2006/dsa-1089", }, { source: "cve@mitre.org", url: "http://www.freeradius.org/security.html", }, { source: "cve@mitre.org", url: "http://www.gentoo.org/security/en/glsa/glsa-200604-03.xml", }, { source: "cve@mitre.org", url: "http://www.mandriva.com/security/advisories?name=MDKSA-2006:060", }, { source: "cve@mitre.org", url: "http://www.securityfocus.com/bid/17171", }, { source: "cve@mitre.org", url: "http://www.trustix.org/errata/2006/0020", }, { source: "cve@mitre.org", url: "http://www.vupen.com/english/advisories/2006/1016", }, { source: "cve@mitre.org", url: "https://exchange.xforce.ibmcloud.com/vulnerabilities/25352", }, { source: "cve@mitre.org", url: "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10156", }, { source: "af854a3a-2127-422b-91ae-364da2661108", url: "ftp://patches.sgi.com/support/free/security/advisories/20060404-01-U.asc", }, { source: "af854a3a-2127-422b-91ae-364da2661108", url: "http://lists.suse.de/archive/suse-security-announce/2006-Mar/0009.html", }, { source: "af854a3a-2127-422b-91ae-364da2661108", url: "http://rhn.redhat.com/errata/RHSA-2006-0271.html", }, { source: "af854a3a-2127-422b-91ae-364da2661108", tags: [ "Patch", "Vendor Advisory", ], url: "http://secunia.com/advisories/19300", }, { source: "af854a3a-2127-422b-91ae-364da2661108", url: "http://secunia.com/advisories/19405", }, { source: "af854a3a-2127-422b-91ae-364da2661108", url: "http://secunia.com/advisories/19518", }, { source: "af854a3a-2127-422b-91ae-364da2661108", url: "http://secunia.com/advisories/19527", }, { source: "af854a3a-2127-422b-91ae-364da2661108", url: "http://secunia.com/advisories/19811", }, { source: "af854a3a-2127-422b-91ae-364da2661108", url: "http://secunia.com/advisories/20461", }, { source: "af854a3a-2127-422b-91ae-364da2661108", url: "http://securitytracker.com/id?1015795", }, { source: "af854a3a-2127-422b-91ae-364da2661108", url: "http://www.debian.org/security/2006/dsa-1089", }, { source: "af854a3a-2127-422b-91ae-364da2661108", url: "http://www.freeradius.org/security.html", }, { source: "af854a3a-2127-422b-91ae-364da2661108", url: "http://www.gentoo.org/security/en/glsa/glsa-200604-03.xml", }, { source: "af854a3a-2127-422b-91ae-364da2661108", url: "http://www.mandriva.com/security/advisories?name=MDKSA-2006:060", }, { source: "af854a3a-2127-422b-91ae-364da2661108", url: "http://www.securityfocus.com/bid/17171", }, { source: "af854a3a-2127-422b-91ae-364da2661108", url: "http://www.trustix.org/errata/2006/0020", }, { source: "af854a3a-2127-422b-91ae-364da2661108", url: "http://www.vupen.com/english/advisories/2006/1016", }, { source: "af854a3a-2127-422b-91ae-364da2661108", url: "https://exchange.xforce.ibmcloud.com/vulnerabilities/25352", }, { source: "af854a3a-2127-422b-91ae-364da2661108", url: "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10156", }, ], sourceIdentifier: "cve@mitre.org", vulnStatus: "Deferred", weaknesses: [ { description: [ { lang: "en", value: "NVD-CWE-Other", }, ], source: "nvd@nist.gov", type: "Primary", }, ], }
gsd-2006-1354
Vulnerability from gsd
Modified
2023-12-13 01:19
Details
Unspecified vulnerability in FreeRADIUS 1.0.0 up to 1.1.0 allows remote attackers to bypass authentication or cause a denial of service (server crash) via "Insufficient input validation" in the EAP-MSCHAPv2 state machine module.
Aliases
Aliases
{ GSD: { alias: "CVE-2006-1354", description: "Unspecified vulnerability in FreeRADIUS 1.0.0 up to 1.1.0 allows remote attackers to bypass authentication or cause a denial of service (server crash) via \"Insufficient input validation\" in the EAP-MSCHAPv2 state machine module.", id: "GSD-2006-1354", references: [ "https://www.suse.com/security/cve/CVE-2006-1354.html", "https://www.debian.org/security/2006/dsa-1089", "https://access.redhat.com/errata/RHSA-2006:0271", ], }, gsd: { metadata: { exploitCode: "unknown", remediation: "unknown", reportConfidence: "confirmed", type: "vulnerability", }, osvSchema: { aliases: [ "CVE-2006-1354", ], details: "Unspecified vulnerability in FreeRADIUS 1.0.0 up to 1.1.0 allows remote attackers to bypass authentication or cause a denial of service (server crash) via \"Insufficient input validation\" in the EAP-MSCHAPv2 state machine module.", id: "GSD-2006-1354", modified: "2023-12-13T01:19:55.017433Z", schema_version: "1.4.0", }, }, namespaces: { "cve.org": { CVE_data_meta: { ASSIGNER: "cve@mitre.org", ID: "CVE-2006-1354", STATE: "PUBLIC", }, affects: { vendor: { vendor_data: [ { product: { product_data: [ { product_name: "n/a", version: { version_data: [ { version_value: "n/a", }, ], }, }, ], }, vendor_name: "n/a", }, ], }, }, data_format: "MITRE", data_type: "CVE", data_version: "4.0", description: { description_data: [ { lang: "eng", value: "Unspecified vulnerability in FreeRADIUS 1.0.0 up to 1.1.0 allows remote attackers to bypass authentication or cause a denial of service (server crash) via \"Insufficient input validation\" in the EAP-MSCHAPv2 state machine module.", }, ], }, problemtype: { problemtype_data: [ { description: [ { lang: "eng", value: "n/a", }, ], }, ], }, references: { reference_data: [ { name: "GLSA-200604-03", refsource: "GENTOO", url: "http://www.gentoo.org/security/en/glsa/glsa-200604-03.xml", }, { name: "20060404-01-U", refsource: "SGI", url: "ftp://patches.sgi.com/support/free/security/advisories/20060404-01-U.asc", }, { name: "freeradius-eap-mschapv2-auth-bypass(25352)", refsource: "XF", url: "https://exchange.xforce.ibmcloud.com/vulnerabilities/25352", }, { name: "19300", refsource: "SECUNIA", url: "http://secunia.com/advisories/19300", }, { name: "SUSE-SA:2006:019", refsource: "SUSE", url: "http://lists.suse.de/archive/suse-security-announce/2006-Mar/0009.html", }, { name: "17171", refsource: "BID", url: "http://www.securityfocus.com/bid/17171", }, { name: "20461", refsource: "SECUNIA", url: "http://secunia.com/advisories/20461", }, { name: "19405", refsource: "SECUNIA", url: "http://secunia.com/advisories/19405", }, { name: "19811", refsource: "SECUNIA", url: "http://secunia.com/advisories/19811", }, { name: "ADV-2006-1016", refsource: "VUPEN", url: "http://www.vupen.com/english/advisories/2006/1016", }, { name: "oval:org.mitre.oval:def:10156", refsource: "OVAL", url: "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10156", }, { name: "http://www.freeradius.org/security.html", refsource: "CONFIRM", url: "http://www.freeradius.org/security.html", }, { name: "DSA-1089", refsource: "DEBIAN", url: "http://www.debian.org/security/2006/dsa-1089", }, { name: "1015795", refsource: "SECTRACK", url: "http://securitytracker.com/id?1015795", }, { name: "RHSA-2006:0271", refsource: "REDHAT", url: "http://rhn.redhat.com/errata/RHSA-2006-0271.html", }, { name: "19527", refsource: "SECUNIA", url: "http://secunia.com/advisories/19527", }, { name: "2006-0020", refsource: "TRUSTIX", url: "http://www.trustix.org/errata/2006/0020", }, { name: "MDKSA-2006:060", refsource: "MANDRIVA", url: "http://www.mandriva.com/security/advisories?name=MDKSA-2006:060", }, { name: "19518", refsource: "SECUNIA", url: "http://secunia.com/advisories/19518", }, ], }, }, "nvd.nist.gov": { configurations: { CVE_data_version: "4.0", nodes: [ { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:a:freeradius:freeradius:1.0.5:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:a:freeradius:freeradius:1.1.0:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:a:freeradius:freeradius:1.0.0:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:a:freeradius:freeradius:1.0.3:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:a:freeradius:freeradius:1.0.4:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:a:freeradius:freeradius:1.0.1:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:a:freeradius:freeradius:1.0.2:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, ], operator: "OR", }, ], }, cve: { CVE_data_meta: { ASSIGNER: "cve@mitre.org", ID: "CVE-2006-1354", }, data_format: "MITRE", data_type: "CVE", data_version: "4.0", description: { description_data: [ { lang: "en", value: "Unspecified vulnerability in FreeRADIUS 1.0.0 up to 1.1.0 allows remote attackers to bypass authentication or cause a denial of service (server crash) via \"Insufficient input validation\" in the EAP-MSCHAPv2 state machine module.", }, ], }, problemtype: { problemtype_data: [ { description: [ { lang: "en", value: "NVD-CWE-Other", }, ], }, ], }, references: { reference_data: [ { name: "http://www.freeradius.org/security.html", refsource: "CONFIRM", tags: [], url: "http://www.freeradius.org/security.html", }, { name: "19300", refsource: "SECUNIA", tags: [ "Patch", "Vendor Advisory", ], url: "http://secunia.com/advisories/19300", }, { name: "SUSE-SA:2006:019", refsource: "SUSE", tags: [], url: "http://lists.suse.de/archive/suse-security-announce/2006-Mar/0009.html", }, { name: "17171", refsource: "BID", tags: [], url: "http://www.securityfocus.com/bid/17171", }, { name: "1015795", refsource: "SECTRACK", tags: [], url: "http://securitytracker.com/id?1015795", }, { name: "19405", refsource: "SECUNIA", tags: [], url: "http://secunia.com/advisories/19405", }, { name: "2006-0020", refsource: "TRUSTIX", tags: [], url: "http://www.trustix.org/errata/2006/0020", }, { name: "GLSA-200604-03", refsource: "GENTOO", tags: [], url: "http://www.gentoo.org/security/en/glsa/glsa-200604-03.xml", }, { name: "RHSA-2006:0271", refsource: "REDHAT", tags: [], url: "http://rhn.redhat.com/errata/RHSA-2006-0271.html", }, { name: "19518", refsource: "SECUNIA", tags: [], url: "http://secunia.com/advisories/19518", }, { name: "19527", refsource: "SECUNIA", tags: [], url: "http://secunia.com/advisories/19527", }, { name: "20060404-01-U", refsource: "SGI", tags: [], url: "ftp://patches.sgi.com/support/free/security/advisories/20060404-01-U.asc", }, { name: "19811", refsource: "SECUNIA", tags: [], url: "http://secunia.com/advisories/19811", }, { name: "DSA-1089", refsource: "DEBIAN", tags: [], url: "http://www.debian.org/security/2006/dsa-1089", }, { name: "20461", refsource: "SECUNIA", tags: [], url: "http://secunia.com/advisories/20461", }, { name: "MDKSA-2006:060", refsource: "MANDRIVA", tags: [], url: "http://www.mandriva.com/security/advisories?name=MDKSA-2006:060", }, { name: "ADV-2006-1016", refsource: "VUPEN", tags: [], url: "http://www.vupen.com/english/advisories/2006/1016", }, { name: "freeradius-eap-mschapv2-auth-bypass(25352)", refsource: "XF", tags: [], url: "https://exchange.xforce.ibmcloud.com/vulnerabilities/25352", }, { name: "oval:org.mitre.oval:def:10156", refsource: "OVAL", tags: [], url: "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10156", }, ], }, }, impact: { baseMetricV2: { cvssV2: { accessComplexity: "LOW", accessVector: "NETWORK", authentication: "NONE", availabilityImpact: "PARTIAL", baseScore: 7.5, confidentialityImpact: "PARTIAL", integrityImpact: "PARTIAL", vectorString: "AV:N/AC:L/Au:N/C:P/I:P/A:P", version: "2.0", }, exploitabilityScore: 10, impactScore: 6.4, obtainAllPrivilege: false, obtainOtherPrivilege: true, obtainUserPrivilege: false, severity: "HIGH", userInteractionRequired: false, }, }, lastModifiedDate: "2017-10-11T01:30Z", publishedDate: "2006-03-22T02:02Z", }, }, }
ghsa-778m-hp9h-2cxq
Vulnerability from github
Published
2022-05-03 03:15
Modified
2022-05-03 03:15
Details
Unspecified vulnerability in FreeRADIUS 1.0.0 up to 1.1.0 allows remote attackers to bypass authentication or cause a denial of service (server crash) via "Insufficient input validation" in the EAP-MSCHAPv2 state machine module.
{ affected: [], aliases: [ "CVE-2006-1354", ], database_specific: { cwe_ids: [], github_reviewed: false, github_reviewed_at: null, nvd_published_at: "2006-03-22T02:02:00Z", severity: "HIGH", }, details: "Unspecified vulnerability in FreeRADIUS 1.0.0 up to 1.1.0 allows remote attackers to bypass authentication or cause a denial of service (server crash) via \"Insufficient input validation\" in the EAP-MSCHAPv2 state machine module.", id: "GHSA-778m-hp9h-2cxq", modified: "2022-05-03T03:15:38Z", published: "2022-05-03T03:15:38Z", references: [ { type: "ADVISORY", url: "https://nvd.nist.gov/vuln/detail/CVE-2006-1354", }, { type: "WEB", url: "https://exchange.xforce.ibmcloud.com/vulnerabilities/25352", }, { type: "WEB", url: "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10156", }, { type: "WEB", url: "http://lists.suse.de/archive/suse-security-announce/2006-Mar/0009.html", }, { type: "WEB", url: "http://rhn.redhat.com/errata/RHSA-2006-0271.html", }, { type: "WEB", url: "http://secunia.com/advisories/19300", }, { type: "WEB", url: "http://secunia.com/advisories/19405", }, { type: "WEB", url: "http://secunia.com/advisories/19518", }, { type: "WEB", url: "http://secunia.com/advisories/19527", }, { type: "WEB", url: "http://secunia.com/advisories/19811", }, { type: "WEB", url: "http://secunia.com/advisories/20461", }, { type: "WEB", url: "http://securitytracker.com/id?1015795", }, { type: "WEB", url: "http://www.debian.org/security/2006/dsa-1089", }, { type: "WEB", url: "http://www.freeradius.org/security.html", }, { type: "WEB", url: "http://www.gentoo.org/security/en/glsa/glsa-200604-03.xml", }, { type: "WEB", url: "http://www.mandriva.com/security/advisories?name=MDKSA-2006:060", }, { type: "WEB", url: "http://www.securityfocus.com/bid/17171", }, { type: "WEB", url: "http://www.trustix.org/errata/2006/0020", }, { type: "WEB", url: "http://www.vupen.com/english/advisories/2006/1016", }, ], schema_version: "1.4.0", severity: [], }
Log in or create an account to share your comment.
Security Advisory comment format.
This schema specifies the format of a comment related to a security advisory.
UUIDv4 of the comment
UUIDv4 of the Vulnerability-Lookup instance
When the comment was created originally
When the comment was last updated
Title of the comment
Description of the comment
The identifier of the vulnerability (CVE ID, GHSA-ID, PYSEC ID, etc.).
Loading…
Loading…
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
- Confirmed: The vulnerability is confirmed from an analyst perspective.
- Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
- Patched: This vulnerability was successfully patched by the user reporting the sighting.
- Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
- Not confirmed: The user expresses doubt about the veracity of the vulnerability.
- Not patched: This vulnerability was not successfully patched by the user reporting the sighting.