Ubuntu
freeradius package

Change logs for freeradius source package in Bionic

  1. Bionic (18.04)
  2. Change log 
  • freeradius (3.0.16+dfsg-1ubuntu3.2) bionic-security; urgency=medium

  * SECURITY UPDATE: DoS when using concurrent EAP-pwd handshakes
    - debian/patches/CVE-2019-17185.patch: fix DoS due to multithreaded
      BN_CTX access
    - CVE-2019-17185
  * SECURITY UPDATE: null pointer dereference in eap-sim module
    - debian/patches/CVE-2022-41860.patch: add sanity checks in
      eapsimlib.c
    - CVE-2022-41860
  * SECURITY UDPATE: DoS using abinary attribute
    - debian/patches/CVE-2022-41861.patch: fix abinary attribute checks
    - CVE-2022-41861

 -- Nishit Majithia <email address hidden>  Wed, 04 Jan 2023 08:48:42 +0530
  • freeradius (3.0.16+dfsg-1ubuntu3.1) bionic-security; urgency=medium

  * SECURITY UPDATE: Bypass authentication
    - debian/patches/CVE-2019-11234-and-2019-11235-*.patch: fix
      by assuring the received scalar lies within the valid
      range, and by checking that the received element is not the
      point at infinity and lies on the elliptic curve being used
      in src/modules/rlm_eap/types/rlm_eap_pwd/eap_pwd.c.
    - CVE-2019-11234
    - CVE-2019-11235

 -- <email address hidden> (Leonidas S. Barbosa)  Wed, 17 Apr 2019 09:59:55 -0300
  • freeradius (3.0.16+dfsg-1ubuntu3) bionic; urgency=medium

  * No-change rebuild against libcurl4

 -- Steve Langasek <email address hidden>  Wed, 28 Feb 2018 06:51:17 +0000
  • freeradius (3.0.16+dfsg-1ubuntu2) bionic; urgency=high

  * No change rebuild against openssl1.1.

 -- Dimitri John Ledkov <email address hidden>  Wed, 07 Feb 2018 11:35:23 +0000
  • freeradius (3.0.16+dfsg-1ubuntu1) bionic; urgency=low

  * Merge from Debian unstable.  Remaining changes:
    - d/control: drop b-d on collectd, as it is in universe
      (LP #1522040).

freeradius (3.0.16+dfsg-1) unstable; urgency=medium

  * New upstream version 3.0.16+dfsg

freeradius (3.0.15+dfsg-2) unstable; urgency=medium

  * logrotate: don’t accidentally define global options (Closes: #872158)

 -- Gianfranco Costamagna <email address hidden>  Fri, 02 Feb 2018 15:23:23 +0100
  • freeradius (3.0.15+dfsg-1ubuntu2) artful; urgency=medium

  * No-change rebuild for perl 5.26.0.

 -- Matthias Klose <email address hidden>  Wed, 26 Jul 2017 20:02:29 +0000