Critical severity9.8NVD Advisory· Published Jul 17, 2017· Updated Jun 17, 2026
CVE-2017-10979
CVE-2017-10979
Description
An FR-GV-202 issue in FreeRADIUS 2.x before 2.2.10 allows "Write overflow in rad_coalesce()" - this allows remote attackers to cause a denial of service (daemon crash) or possibly execute arbitrary code.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
34cpe:2.3:a:freeradius:freeradius:2.0.0:*:*:*:*:*:*:*+ 30 more
- cpe:2.3:a:freeradius:freeradius:2.0.0:*:*:*:*:*:*:*
- cpe:2.3:a:freeradius:freeradius:2.0.0:pre1:*:*:*:*:*:*
- cpe:2.3:a:freeradius:freeradius:2.0.0:pre2:*:*:*:*:*:*
- cpe:2.3:a:freeradius:freeradius:2.0.1:*:*:*:*:*:*:*
- cpe:2.3:a:freeradius:freeradius:2.0.2:*:*:*:*:*:*:*
- cpe:2.3:a:freeradius:freeradius:2.0.3:*:*:*:*:*:*:*
- cpe:2.3:a:freeradius:freeradius:2.0.4:*:*:*:*:*:*:*
- cpe:2.3:a:freeradius:freeradius:2.0.5:*:*:*:*:*:*:*
- cpe:2.3:a:freeradius:freeradius:2.1.0:*:*:*:*:*:*:*
- cpe:2.3:a:freeradius:freeradius:2.1.1:*:*:*:*:*:*:*
- cpe:2.3:a:freeradius:freeradius:2.1.10:*:*:*:*:*:*:*
- cpe:2.3:a:freeradius:freeradius:2.1.11:*:*:*:*:*:*:*
- cpe:2.3:a:freeradius:freeradius:2.1.12:*:*:*:*:*:*:*
- cpe:2.3:a:freeradius:freeradius:2.1.2:*:*:*:*:*:*:*
- cpe:2.3:a:freeradius:freeradius:2.1.3:*:*:*:*:*:*:*
- cpe:2.3:a:freeradius:freeradius:2.1.4:*:*:*:*:*:*:*
- cpe:2.3:a:freeradius:freeradius:2.1.6:*:*:*:*:*:*:*
- cpe:2.3:a:freeradius:freeradius:2.1.7:*:*:*:*:*:*:*
- cpe:2.3:a:freeradius:freeradius:2.1.8:*:*:*:*:*:*:*
- cpe:2.3:a:freeradius:freeradius:2.1.9:*:*:*:*:*:*:*
- cpe:2.3:a:freeradius:freeradius:2.2.0:*:*:*:*:*:*:*
- cpe:2.3:a:freeradius:freeradius:2.2.1:*:*:*:*:*:*:*
- cpe:2.3:a:freeradius:freeradius:2.2.2:*:*:*:*:*:*:*
- cpe:2.3:a:freeradius:freeradius:2.2.3:*:*:*:*:*:*:*
- cpe:2.3:a:freeradius:freeradius:2.2.4:*:*:*:*:*:*:*
- cpe:2.3:a:freeradius:freeradius:2.2.5:*:*:*:*:*:*:*
- cpe:2.3:a:freeradius:freeradius:2.2.6:*:*:*:*:*:*:*
- cpe:2.3:a:freeradius:freeradius:2.2.7:*:*:*:*:*:*:*
- cpe:2.3:a:freeradius:freeradius:2.2.8:*:*:*:*:*:*:*
- cpe:2.3:a:freeradius:freeradius:2.2.9:*:*:*:*:*:*:*
- (no CPE)range: <2.2.10
- osv-coords3 versionspkg:rpm/suse/freeradius-server&distro=SUSE%20Linux%20Enterprise%20Server%2011%20SP4pkg:rpm/suse/freeradius-server&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2011%20SP4pkg:rpm/suse/freeradius-server&distro=SUSE%20Linux%20Enterprise%20Software%20Development%20Kit%2011%20SP4
< 2.1.1-7.25.3.1+ 2 more
- (no CPE)range: < 2.1.1-7.25.3.1
- (no CPE)range: < 2.1.1-7.25.3.1
- (no CPE)range: < 2.1.1-7.25.3.1
Patches
Vulnerability mechanics
References
5- freeradius.org/security/fuzzer-2017.htmlnvdPatchVendor Advisory
- www.securitytracker.com/id/1038914nvdThird Party AdvisoryVDB Entry
- www.debian.org/security/2017/dsa-3930nvd
- www.securityfocus.com/bid/99901nvd
- access.redhat.com/errata/RHSA-2017:1759nvd
News mentions
0No linked articles in our index yet.