Synopsis: Important: freeradius security update Advisory ID: SLSA-2019:1131-1 Issue Date: 2019-05-09 CVE Numbers: CVE-2019-11235 CVE-2019-11234 -- Security Fix(es): * freeradius: eap-pwd: authentication bypass via an invalid curve attack (CVE-2019-11235) * freeradius: eap-pwd: fake authentication using reflection (CVE-2019-11234) -- SL7 x86_64 freeradius-3.0.13-10.el7_6.x86_64.rpm freeradius-debuginfo-3.0.13-10.el7_6.x86_64.rpm freeradius-debuginfo-3.0.13-10.el7_6.i686.rpm freeradius-devel-3.0.13-10.el7_6.i686.rpm freeradius-devel-3.0.13-10.el7_6.x86_64.rpm freeradius-doc-3.0.13-10.el7_6.x86_64.rpm freeradius-krb5-3.0.13-10.el7_6.x86_64.rpm freeradius-ldap-3.0.13-10.el7_6.x86_64.rpm freeradius-mysql-3.0.13-10.el7_6.x86_64.rpm freeradius-perl-3.0.13-10.el7_6.x86_64.rpm freeradius-postgresql-3.0.13-10.el7_6.x86_64.rpm freeradius-python-3.0.13-10.el7_6.x86_64.rpm freeradius-sqlite-3.0.13-10.el7_6.x86_64.rpm freeradius-unixODBC-3.0.13-10.el7_6.x86_64.rpm freeradius-utils-3.0.13-10.el7_6.x86_64.rpm - Scientific Linux Development Team