THE FreeRADIUS development team has released an emergency maintenance update addressing critical security flaws that expose networks to traffic-based remote execution threats. Key vulnerabilities include unauthenticated buffer overflow issues that could lead to server crashes when handling improperly formatted NAS-Filter-Rule attributes. Developers opted to withhold detailed proof-of-concept information to prevent exploitation.
The increasing speed of automated patch generation presents risks of secondary bugs, necessitating rigorous testing before deployment. Network administrators are urged to upgrade to FreeRADIUS versions 3.0.28 or 3.2.9 to protect against these vulnerabilities.