CVE-2017-10985

Priority
Medium
Description
An FR-GV-302 issue in FreeRADIUS 3.x before 3.0.15 allows "Infinite loop
and memory exhaustion with 'concat' attributes" and a denial of service.
References
Bugs
Notes
 sbeattie> v3 only
Assigned-to
mdeslaur
Package
Upstream:released (3.0.15+dfsg-1)
Ubuntu 17.10 (Artful Aardvark):released (3.0.15+dfsg-1ubuntu1)
Ubuntu 12.04 ESM (Precise Pangolin):DNE
Ubuntu 14.04 LTS (Trusty Tahr):not-affected (only 3.x)
Ubuntu Core 15.04:DNE
Ubuntu 16.04 LTS (Xenial Xerus):not-affected (only 3.x)
Ubuntu 17.04 (Zesty Zapus):released (3.0.12+dfsg-4ubuntu1.2)
Patches:
Upstream:https://github.com/FreeRADIUS/freeradius-server/commit/6726c16549b131ed39f6f8886cdf5d9d922a9a97
More Information

Updated: 2017-08-11 23:55:39 UTC (commit 13081)