Mandriva Linux Security Advisory : freeradius (MDVSA-2014:058)
High Nessus Plugin ID 73005
SynopsisThe remote Mandriva Linux host is missing one or more security updates.
DescriptionUpdated freeradius package fixes security vulnerability :
SSHA processing in freeradius before 2.2.3 runs into a stack-based buffer overflow in the freeradius rlm_pap module if the password source uses an unusually long hashed password (CVE-2014-2015).
SolutionUpdate the affected packages.