[Pkg-freeradius-maintainers] Bug#880913: Bug#880913: correct receiving of multiple RADIUS packets through RadSec

Michael Stapelberg stapelberg at debian.org
Wed Jan 3 08:11:35 UTC 2018

Sorry for the late reply. See inline:

On Sun, Nov 5, 2017 at 4:41 PM, Jan Tomasek <jan at tomasek.cz> wrote:

> Package: freeradius
> Version: 3.0.12+dfsg-5
> Severity: important
> Tags: patch
> freeRADIUS v3 does have implementation bug. It isn't able to read more
> than one packet from incoming TLS (RadSec) connection. The bug shows more
> likely on large deployments and is able to make server completely useless.
> That is why I'm setting Severity to important.
> More detailed technical info is available here:
>     https://github.com/FreeRADIUS/freeradius-server/pull/2106
>     https://github.com/FreeRADIUS/freeradius-server/pull/2107
> The attached patch is tested against official freeRAIDUS releases 3.0.12,
> 3.0.14, 3.0.15 and against Debian package freeradius_3.0.12+dfsg-5 it fixes
> the problem and causes no harm.
> Please is it possible to propagate this into Debian/Stretch?

Pushing code directly to Debian stretch is too risky. Let’s wait until the
change made it to Debian testing, which most naturally would happen with a
new upstream release (3.0.16?).

Once that happened, please ping this bug and we can look into preparing an
update to stretch.

> Thanks
> --
> -----------------------
> Jan Tomasek aka Semik
> http://www.tomasek.cz/
> _______________________________________________
> Pkg-freeradius-maintainers mailing list
> Pkg-freeradius-maintainers at lists.alioth.debian.org
> https://lists.alioth.debian.org/mailman/listinfo/pkg-
> freeradius-maintainers

Best regards,
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.alioth.debian.org/pipermail/pkg-freeradius-maintainers/attachments/20180103/a2ca9253/attachment.html>

More information about the Pkg-freeradius-maintainers mailing list