[v2.5] freeradius: denial of service in rlm_pap hash processing (CVE-2014-2015)
Very little info but it appears to affect all alpine branches.
http://lists.freebsd.org/pipermail/freebsd-bugbusters/2014-February/000610.html
https://github.com/FreeRADIUS/freeradius-server/commit/0d606cfc29a.patch
https://security-tracker.debian.org/tracker/CVE-2014-2015
(from redmine: issue id 2720, created on 2014-03-04, closed on 2014-03-05)
- Relations:
- copied_to #2719 (closed)
- copied_to #2721 (closed)
- parent #2717 (closed)
- Changesets:
- Revision 22cc903d on 2014-03-04T13:11:37Z:
main/freeradius: upgrade to 2.2.3. Fix CVE-2014-2015. Backports enhancements and fixes from 2.7-stable. Fixes #2720