rpms/freeradius
7
0
Fork 0
Code Issues Pull Requests Releases Activity

Backport BlastRADIUS CVE fix

Browse Source 
Manual backport from v3.0.x branch.

Resolves: RHEL-46572
Signed-off-by: Antonio Torres <antorres@redhat.com>
This commit is contained in:
Antonio Torres 2024-07-11 15:34:56 +02:00
parent 9d3c2d828c
commit b3ac7a5c16
No known key found for this signature in database
GPG Key ID: 359FAF777296F653
2 changed files with 1509 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

1502
freeradius-blastradius-fix.patch Normal file
View File

File diff suppressed because it is too large Load Diff

8
freeradius.spec
View File

@ -9,7 +9,7 @@
Summary: High-performance and highly configurable free RADIUS server Summary: High-performance and highly configurable free RADIUS server
Name: freeradius Name: freeradius
Version: 3.0.20 Version: 3.0.20
Release: 14%{?dist} Release: 15%{?dist}
License: GPLv2+ and LGPLv2+ License: GPLv2+ and LGPLv2+
Group: System Environment/Daemons Group: System Environment/Daemons
URL: http://www.freeradius.org/ URL: http://www.freeradius.org/
@ -47,6 +47,7 @@ Patch14: freeradius-Fix-segfault-when-home_server-is-null.patch
Patch15: freeradius-fix-crash-on-invalid-abinary-data.patch Patch15: freeradius-fix-crash-on-invalid-abinary-data.patch
Patch16: freeradius-fix-crash-unknown-eap-sim.patch Patch16: freeradius-fix-crash-unknown-eap-sim.patch
Patch17: freeradius-fix-info-leakage-eap-pwd.patch Patch17: freeradius-fix-info-leakage-eap-pwd.patch
Patch18: freeradius-blastradius-fix.patch
%global docdir %{?_pkgdocdir}%{!?_pkgdocdir:%{_docdir}/%{name}-%{version}} %global docdir %{?_pkgdocdir}%{!?_pkgdocdir:%{_docdir}/%{name}-%{version}}
@ -252,6 +253,7 @@ This plugin provides the REST support for the FreeRADIUS server project.
%patch15 -p1 %patch15 -p1
%patch16 -p1 %patch16 -p1
%patch17 -p1 %patch17 -p1
%patch18 -p1
# Add fixed dhparam file to the source to ensure `make tests` can run. # Add fixed dhparam file to the source to ensure `make tests` can run.
cp %{SOURCE105} raddb/certs/rfc3526-group-18-8192.dhparam cp %{SOURCE105} raddb/certs/rfc3526-group-18-8192.dhparam
@ -902,6 +904,10 @@ exit 0
%attr(640,root,radiusd) %config(noreplace) /etc/raddb/mods-available/rest %attr(640,root,radiusd) %config(noreplace) /etc/raddb/mods-available/rest
%changelog %changelog
* Thu Jul 11 2023 Antonio Torres <antorres@redhat.com> - 3.0.20-15
- Backport BlastRADIUS CVE fix
Resolves: RHEL-46572
* Fri Dec 14 2022 Antonio Torres <antorres@redhat.com> - 3.0.20-14 * Fri Dec 14 2022 Antonio Torres <antorres@redhat.com> - 3.0.20-14
- Fix defect found by Covscan - Fix defect found by Covscan
Resolves: #2151704 Resolves: #2151704