Sicherheit: Pufferüberlauf in php-pecl-radius
Aktuelle Meldungen Distributionen
Name: Pufferüberlauf in php-pecl-radius
ID: FEDORA-2013-11911
Distribution: Fedora
Plattformen: Fedora 19
Datum: Di, 9. Juli 2013, 07:54
Referenzen: Keine Angabe
Applikationen: php-pecl-radius


Name        : php-pecl-radius
Product : Fedora 19
Version : 1.2.7
Release : 1.fc19
URL : http://pecl.php.net/package/radius
Summary : Radius client library
Description :
This package is based on the libradius of FreeBSD, with some modifications
and extensions. This PECL provides full support for RADIUS authentication
(RFC 2865) and RADIUS accounting (RFC 2866), works on Unix and on Windows.
Its an easy way to authenticate your users against the user-database of your
OS (for example against Windows Active-Directory via IAS).

Update Information:

RPM change:
- provide the ZTS extension

Version 1.2.7
- Fix a security issue in radius_get_vendor_attr() by enforcing checks of the
VSA length field against the buffer size. (Adam)

Version 1.2.6
- Support added for PHP 5.4 and 5.5. (Johannes)
- Fixed bug #60885 (Radius module causing Apache segmentation fault). (Adam)
- Fixed a crash when calling radius_server_secret() with no servers configured.

* Fri Jun 28 2013 Remi Collet <remi@fedoraproject.org> - 1.2.7-1
- Update to 1.2.7 (security)
- build ZTS extension
- spec cleanups

This update can be installed with the "yum" update program. Use
su -c 'yum update php-pecl-radius' at the command line.
For more information, refer to "Managing Software with yum",
available at http://docs.fedoraproject.org/yum/.

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
package-announce mailing list
Pro-Linux @Facebook
Neue Nachrichten