CVE-2017-10978

See a problem?
Please try reporting it to the source first.

Source

https://nvd.nist.gov/vuln/detail/CVE-2017-10978

Import Source

https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2017-10978.json

JSON Data

https://api.test.osv.dev/v1/vulns/CVE-2017-10978

Downstream

DEBIAN-CVE-2017-10978

DLA-1064-1

DSA-3930-1

RHSA-2017:1759

RHSA-2017:2389

SUSE-SU-2017:2202-1

SUSE-SU-2017:2243-1

SUSE-SU-2017:2244-1

UBUNTU-CVE-2017-10978

USN-3369-1

openSUSE-SU-2024:10767-1

Related

Published

2017-07-17T17:29:00.180Z

Modified

2025-11-14T04:55:46.454521Z

Severity

7.5 (High) CVSS_V3 - CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H CVSS Calculator

Summary

[none]

Details

An FR-GV-201 issue in FreeRADIUS 2.x before 2.2.10 and 3.x before 3.0.15 allows "Read / write overflow in make_secret()" and a denial of service.

References

Affected packages

Git / github.com/freeradius/freeradius-server

Affected ranges

Type: GIT
Repo: https://github.com/freeradius/freeradius-server
Events: Introduced

74ef9b64f7cd631b13d7a61bd1588a2bfc75ba39

Fixed

ee6cba74cfa0c7214eb068f2f4665da0137c69c3

Affected versions

Other

release_2_0_0

release_2_0_1

release_2_0_2

release_2_0_3

release_2_0_4

release_2_0_5

release_2_1_0

release_2_1_1

release_2_1_10

release_2_1_11

release_2_1_12

release_2_1_2

release_2_1_3

release_2_1_4

release_2_1_7

release_2_1_8

release_2_1_9

release_2_2_0

release_2_2_1

release_2_2_2

release_2_2_3

release_2_2_4

release_2_2_5

release_2_2_6

release_2_2_7

release_2_2_8

release_2_2_9

Database specific

source

"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2017-10978.json"