mailing list archives
Re: CVE request: vulnerability in FreeRADIUS (OCSP)
From: Vincent Danen <vdanen () redhat com>
Date: Fri, 15 Jul 2011 11:18:49 -0600
* [2011-07-15 15:13:02 +0200] dfncert () dfn-cert de wrote:
There is a vulnerability in the recently introduced OCSP feature in
FreeRADIUS version 2.1.11.
A patch was proposed to the packet maintainer.
This is pretty light on the details. Any references to supply or an
actual description of the problem?
Link to upstream fixes, emails, bugs, whatever?
Vincent Danen / Red Hat Security Response Team