Stack-based buffer overflow in the cbtls_verify function in FreeRADIUS
2.1.10 through 2.1.12, when using TLS-based EAP methods, allows remote
attackers to cause a denial of service (server crash) and possibly execute
arbitrary code via a long "not after" timestamp in a client certificate.
sbeattie> possibly mitigated by -fstack-protector
sbeattie> upstream report claims 2.1.10-2.1.12 are only affected
Updated: 2016-03-23 03:39:39 UTC (commit 10817)