In FreeBSD 13.0-STABLE before n245765-bec0d2c9c841, 12.2-STABLE before r369859, 11.4-STABLE before r369866, 13.0-RELEASE before p1, 12.2-RELEASE before p7, and 11.4-RELEASE before p10, missing message validation in libradius(3) could allow malicious clients or servers to trigger denial of service in vulnerable servers or clients respectively.
References
Link | Resource |
---|---|
https://security.FreeBSD.org/advisories/FreeBSD-SA-21:12.libradius.asc | Mitigation Vendor Advisory |
https://security.netapp.com/advisory/ntap-20210713-0003/ | Third Party Advisory |
Configurations
Configuration 1 (hide)
|
History
16 May 2022, 20:55
Type | Values Removed | Values Added |
---|---|---|
References |
|
10 Jun 2021, 13:56
Type | Values Removed | Values Added |
---|---|---|
CWE | CWE-20 | |
CPE | cpe:2.3:o:freebsd:freebsd:11.4:p3:*:*:*:*:*:* cpe:2.3:o:freebsd:freebsd:11.4:p5:*:*:*:*:*:* cpe:2.3:o:freebsd:freebsd:11.4:p7:*:*:*:*:*:* cpe:2.3:o:freebsd:freebsd:11.4:p4:*:*:*:*:*:* cpe:2.3:o:freebsd:freebsd:13.0:-:*:*:*:*:*:* cpe:2.3:o:freebsd:freebsd:11.4:p6:*:*:*:*:*:* cpe:2.3:o:freebsd:freebsd:11.4:p1:*:*:*:*:*:* cpe:2.3:o:freebsd:freebsd:12.2:p2:*:*:*:*:*:* cpe:2.3:o:freebsd:freebsd:13.0:beta3-p1:*:*:*:*:*:* cpe:2.3:o:freebsd:freebsd:13.0:rc5-p1:*:*:*:*:*:* cpe:2.3:o:freebsd:freebsd:12.2:p6:*:*:*:*:*:* cpe:2.3:o:freebsd:freebsd:11.4:p2:*:*:*:*:*:* cpe:2.3:o:freebsd:freebsd:12.2:-:*:*:*:*:*:* cpe:2.3:o:freebsd:freebsd:11.4:p9:*:*:*:*:*:* cpe:2.3:o:freebsd:freebsd:12.2:p3:*:*:*:*:*:* cpe:2.3:o:freebsd:freebsd:11.4:-:*:*:*:*:*:* cpe:2.3:o:freebsd:freebsd:11.4:p8:*:*:*:*:*:* cpe:2.3:o:freebsd:freebsd:13.0:rc4:*:*:*:*:*:* cpe:2.3:o:freebsd:freebsd:12.2:p5:*:*:*:*:*:* cpe:2.3:o:freebsd:freebsd:11.4:rc1:*:*:*:*:*:* cpe:2.3:o:freebsd:freebsd:13.0:rc3:*:*:*:*:*:* cpe:2.3:o:freebsd:freebsd:12.2:beta1-p1:*:*:*:*:*:* cpe:2.3:o:freebsd:freebsd:12.2:p4:*:*:*:*:*:* cpe:2.3:o:freebsd:freebsd:11.4:beta1:*:*:*:*:*:* cpe:2.3:o:freebsd:freebsd:11.4:rc2:*:*:*:*:*:* cpe:2.3:o:freebsd:freebsd:12.2:p1:*:*:*:*:*:* |
|
References | (MISC) https://security.FreeBSD.org/advisories/FreeBSD-SA-21:12.libradius.asc - Mitigation, Vendor Advisory | |
CVSS |
v2 : v3 : |
v2 : 5.0
v3 : 7.5 |
28 May 2021, 15:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2021-05-28 15:15
Updated : 2024-02-04 21:47
NVD link : CVE-2021-29629
Mitre link : CVE-2021-29629
CVE.ORG link : CVE-2021-29629
JSON object : View
Products Affected
freebsd
- freebsd
CWE
CWE-20
Improper Input Validation