Scientific Linux Security Update : freeradius on SL3.0.x , SL4.x, SL5.x
Medium Nessus Plugin ID 60178
SynopsisThe remote Scientific Linux host is missing one or more security updates.
DescriptionA memory leak flaw was found in the way FreeRADIUS parses certain authentication requests. A remote attacker could send a specially crafted authentication request which could cause FreeRADIUS to leak a small amount of memory. If enough of these requests are sent, the FreeRADIUS daemon would consume a vast quantity of system memory leading to a possible denial of service. (CVE-2007-2028)
SolutionUpdate the affected packages.