Vulnerability in FreeRADIUS
ascheel at redhat.com
Mon Mar 16 14:40:36 CET 2020
Fedora's FreeRADIUS maintainer here.
----- Original Message -----
> From: "HANCHATE Ravikiran (u5574292)" <u5574292 at orange.be>
> To: "FreeRadius users mailing list" <freeradius-users at lists.freeradius.org>
> Sent: Monday, March 16, 2020 8:22:44 AM
> Subject: RE: Vulnerability in FreeRADIUS
> Thank you Alan for your descriptive reply .
> Cheers !!!
> > 2/ what steps need to be taken to Apply the Linux Fedora patches regarding
> > the FreeRADIUS vulnerability
> Ask Fedora how their system works.
sudo dnf update --refresh
It should get you the latest packages. Fedora 30 and Fedora 31 both have
3.0.20, which is still the latest upstream release. My understanding is
that that release fixes the CVE in question (CVE-2019-13456).
More information about the Freeradius-Users