Create an account

Subscribe to LWN

Shumway lands in Firefox

LWN.net Weekly Edition for October 3, 2013

Integrity and embedded devices

NUMA scheduling progress

LWN.net Weekly Edition for September 26, 2013

Weekly edition	Kernel	Security	Distributions	Contact Us	Search
Archives	Calendar	Subscribe	Write for LWN	LWN.net FAQ	Sponsors

php-radius: buffer overflow

Package(s):

php-radius

CVE #(s):

CVE-2013-2220

Created:

July 3, 2013

Updated:

July 26, 2013

Description:

From the Mandriva advisory:

Fix a security issue in radius_get_vendor_attr() by enforcing checks of the VSA length field against the buffer size.

Alerts:

Mandriva	MDVSA-2013:192	2013-07-02
Fedora	FEDORA-2013-11911	2013-07-09
Fedora	FEDORA-2013-11998	2013-07-09
Fedora	FEDORA-2013-11992	2013-07-09
Mageia	MGASA-2013-0206	2013-07-09
Debian	DSA-2726-1	2013-07-25

(Log in to post comments)

Copyright © 2013, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds