CLSA-2025-1743103421

Import Source

https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/almalinux9.2esu/CLSA-2025-1743103421.json

JSON Data

https://api.osv.dev/v1/vulns/CLSA-2025-1743103421

Upstream

CVE-2024-3596

Published

2025-03-27T19:23:46Z

Modified

2026-05-29T01:15:40.321118559Z

Summary

freeradius: Fix of CVE-2024-3596

Details

CVE-2024-3596: fix chosen-prefix collision attack against MD5 Response Authenticator signature that allowed malicious modification of valid RADIUS responses

References

https://errata.tuxcare.com/almalinux9.2-esu/CLSA-2025-1743103421.html

Affected packages