CVE-2021-29629

In FreeBSD 13.0-STABLE before n245765-bec0d2c9c841, 12.2-STABLE before r369859, 11.4-STABLE before r369866, 13.0-RELEASE before p1, 12.2-RELEASE before p7, and 11.4-RELEASE before p10, missing message validation in libradius(3) could allow malicious clients or servers to trigger denial of service in vulnerable servers or clients respectively.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
7.5 HIGH
NETWORK
LOW
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
freebsdCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 64%
VendorProductVersion
freebsdfreebsd
11.4
freebsdfreebsd
11.4:beta1
freebsdfreebsd
11.4:p1
freebsdfreebsd
11.4:p2
freebsdfreebsd
11.4:p3
freebsdfreebsd
11.4:p4
freebsdfreebsd
11.4:p5
freebsdfreebsd
11.4:p6
freebsdfreebsd
11.4:p7
freebsdfreebsd
11.4:p8
freebsdfreebsd
11.4:p9
freebsdfreebsd
11.4:rc1
freebsdfreebsd
11.4:rc2
freebsdfreebsd
12.2
freebsdfreebsd
12.2:beta1-p1
freebsdfreebsd
12.2:p1
freebsdfreebsd
12.2:p2
freebsdfreebsd
12.2:p3
freebsdfreebsd
12.2:p4
freebsdfreebsd
12.2:p5
freebsdfreebsd
12.2:p6
freebsdfreebsd
13.0
freebsdfreebsd
13.0:beta3-p1
freebsdfreebsd
13.0:rc3
freebsdfreebsd
13.0:rc4
freebsdfreebsd
13.0:rc5-p1
𝑥
= Vulnerable software versions
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
dacs
noble
dne
mantic
dne
lunar
dne
kinetic
dne
jammy
dne
impish
dne
hirsute
ignored
groovy
ignored
focal
needs-triage
bionic
needs-triage
xenial
needs-triage
trusty
dne
netams
noble
dne
mantic
dne
lunar
dne
kinetic
dne
jammy
dne
impish
dne
hirsute
dne
groovy
dne
focal
dne
bionic
dne
xenial
ignored
trusty
dne
Common Weakness Enumeration
References
https://security.FreeBSD.org/advisories/FreeBSD-SA-21:12.libradius.asc
https://security.netapp.com/advisory/ntap-20210713-0003/
https://security.FreeBSD.org/advisories/FreeBSD-SA-21:12.libradius.asc
https://security.netapp.com/advisory/ntap-20210713-0003/