Advisories ยป MGASA-2013-0206

Updated php-radius packages fix CVE-2013-2220

Publication date: 09 Jul 2013
Type: security
Affected Mageia releases : 2 , 3
CVE: CVE-2013-2220

Description

Updated php-radius package fixes security vulnerability:

Fix a security issue in radius_get_vendor_attr() by enforcing checks
of the VSA length field against the buffer size (CVE-2013-2220).
                

References

SRPMS

3/core

2/core