CVE-2019-17185: High severity freeradius vulnerability

Q: What is the severity of CVE-2019-17185?

CVE-2019-17185 is rated as high severity due to its potential for denial of service attacks.

Q: How do I fix CVE-2019-17185?

To fix CVE-2019-17185, upgrade FreeRADIUS to version 3.0.20 or later.

Q: What versions of FreeRADIUS are affected by CVE-2019-17185?

FreeRADIUS versions prior to 3.0.20 are affected by CVE-2019-17185.

Q: Can CVE-2019-17185 be exploited remotely?

Yes, CVE-2019-17185 can be exploited remotely if an attacker initiates concurrent EAP-pwd handshakes.

Q: What is the main impact of CVE-2019-17185?

The main impact of CVE-2019-17185 is that it can lead to service crashes due to concurrent handshake handling.

Published Mar 21, 2020

Updated

In FreeRADIUS 3.0.x before 3.0.20, the EAP-pwd module used a global OpenSSL BNCTX instance to handle all handshakes. This mean multiple threads use the same BNCTX instance concurrently, resulting in crashes when concurrent EAP-pwd handshakes are initiated. This can be abused by an adversary as a Denial-of-Service (DoS) attack.

Affected Software

3 affected componentsFixes available

redhat/freeradius-server<3.0.20

3.0.20

FreeRADIUS freeradius>=3.0.0<3.0.20

openSUSE Leap=15.1

Event History

Mar 21, 2020

CVE Published

via MITRE·12:13 AM

Data Sourced

via MITRE·12:13 AM

Description

Frequently Asked Questions

What is the severity of CVE-2019-17185?

CVE-2019-17185 is rated as high severity due to its potential for denial of service attacks.

How do I fix CVE-2019-17185?

To fix CVE-2019-17185, upgrade FreeRADIUS to version 3.0.20 or later.

What versions of FreeRADIUS are affected by CVE-2019-17185?

FreeRADIUS versions prior to 3.0.20 are affected by CVE-2019-17185.

Can CVE-2019-17185 be exploited remotely?

Yes, CVE-2019-17185 can be exploited remotely if an attacker initiates concurrent EAP-pwd handshakes.

What is the main impact of CVE-2019-17185?