CVE-2017-10979

See a problem?
Please try reporting it to the source first.
Source
https://nvd.nist.gov/vuln/detail/CVE-2017-10979
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2017-10979.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2017-10979
Downstream
Related
Published
2017-07-17T17:29:00.210Z
Modified
2025-11-20T10:46:06.389877Z
Severity
  • 9.8 (Critical) CVSS_V3 - CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H CVSS Calculator
Summary
[none]
Details

An FR-GV-202 issue in FreeRADIUS 2.x before 2.2.10 allows "Write overflow in rad_coalesce()" - this allows remote attackers to cause a denial of service (daemon crash) or possibly execute arbitrary code.

References

Affected packages

Git / github.com/freeradius/freeradius-server

Affected ranges

Type
GIT
Repo
https://github.com/freeradius/freeradius-server
Events
Introduced
0 Unknown introduced commit / All previous commits are affected
Last affected
127137c63569fbb61555df9f8f9c7364a0fa830d
Last affected
1ab83f3abbc87236bbf24379b5413c16f752ee3b
Last affected
1c8d4d4cad8a07e96c0898fcf1cda8d2f3982495
Last affected
1d1e9b7372abecfc0942b127e5faf90df547e198
Last affected
239ba3f92884be49adc90b1383aa8b54cb150fe9
Last affected
28e67574dc8011e86c462b7e8204e180a3667ac5
Last affected
298781855b0e0298a3992dacf20aa444b4f1344b
Last affected
29ce823f72ffdfb2051765a6417126ee91e22552
Last affected
34c68ba800632ccca564f6bdcb186e32886684c1
Last affected
393dd3c3a1a9582040c419c9be35fd4ce56d38cd
Last affected
4c44a40e68c08b445123100b39855f36b65bf5f9
Last affected
4d396a436e73b0331167907e2d84931645b72648
Last affected
64c447ee26d79773230ddf37631058128fe301fe
Last affected
70c228536c4a9113caf509fbfeab305ccfcd25c8
Last affected
74ef9b64f7cd631b13d7a61bd1588a2bfc75ba39
Last affected
7c4c5199e6631d1e93c06025a45e8ba967276986
Last affected
7cd6369a90399dc8836242dde3ce8a3e9595cb42
Last affected
96c47460fad08af8822769d75636ab6d5253d3bf
Last affected
a22023e192fb491903f1e492d74989b0a4324cb9
Last affected
a2c610854bef0f961573f15022d77b1088e8c819
Last affected
ae87fd0cf769498d5ae9a809cc2d703a7494561e
Last affected
af07ace2815910610c0d39de90e4c0cf0735188d
Last affected
b511525f17d3f40ba28d11d7797a827298df1333
Last affected
b75980dc5b8b38f562948492695b9d6151a2cb94
Last affected
bacf36805f38d059f58c5c62141f91611e8a1bbc
Last affected
bf3d29efb416335c1f3b6cc5b25ee06265f160a4
Last affected
db35d2eba513c9aa0fdf127b7e66c5c9bb036bc0
Last affected
de6808e7e3b9cf970f6f8067f762d6a66a6bbaab
Last affected
dfb32dca4abfaf76ed59b81c6b333bcc91be0ee9
Last affected
edf2361c554fe2fe2a1b9a50e81369aaa44a74f9

Affected versions

Other

first-build
release_0_1_0
release_0_2_0
release_0_3_0
release_0_4_0
release_0_5_0
release_0_6_0
release_0_7_0
release_0_9_0
release_0_9_0_final
release_0_9_0_pre2
release_0_9_0_pre3
release_1_0_0
release_1_0_0_pre1
release_1_0_0_pre2
release_1_0_0_pre3
release_1_0_1
release_1_0_2
release_1_1_0
release_1_1_0_pre0
release_1_1_1
release_1_1_2
release_1_1_3
release_1_1_4
release_1_1_5
release_1_1_6
release_1_1_7
release_2_0_0
release_2_0_0_pre1
release_2_0_0_pre2
release_2_0_1
release_2_0_2
release_2_0_3
release_2_0_4
release_2_0_5
release_2_1_0
release_2_1_1
release_2_1_10
release_2_1_11
release_2_1_12
release_2_1_2
release_2_1_3
release_2_1_4
release_2_1_7
release_2_1_8
release_2_1_9
release_2_2_0
release_2_2_1
release_2_2_2
release_2_2_3
release_2_2_4

Database specific

source

"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2017-10979.json"