[Pkg-freeradius-maintainers] Bug#863673: CVE-2017-9148: FreeRADIUS TLS resumption authentication bypass

Guido Günther agx at sigxcpu.org
Mon May 29 21:16:29 UTC 2017

Package: freeradius
Version: 3.0.12+dfsg-4
severity: grave


the following vulnerability was published for freeradius.

CVE-2017-9148[0]: FreeRADIUS TLS resumption authentication bypass

If you fix the vulnerability please also make sure to include the
CVE (Common Vulnerabilities & Exposures) id in your changelog entry.

For further information see:

[0] https://security-tracker.debian.org/tracker/CVE-2017-9148

Please adjust the affected versions in the BTS as needed.
 -- Guido

More information about the Pkg-freeradius-maintainers mailing list