Your message dated Fri, 10 Jul 2026 07:04:36 +0000
with message-id <[email protected]>
and subject line Bug#1138814: fixed in freeradius 3.2.10+dfsg-1
has caused the Debian Bug report #1138814,
regarding Various security fixes in freeradius
to be marked as done.

This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.

(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact [email protected]
immediately.)


-- 
1138814: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1138814
Debian Bug Tracking System
Contact [email protected] with problems
--- Begin Message ---
Package: freeradius
Version: 3.2.7+dfsg-1+deb13u2

FreeRADIUS just had a security update release that fixes various memory
leaks and buffer overflows [0]. One of them has the description " This
crash is before the packet is authenticated via the shared secret, so it
can be exploited by anyone who can send UDP packets to the server",
which makes the severity a bit higher than usual.

[0] https://www.freeradius.org/security/

--- End Message ---
--- Begin Message ---
Source: freeradius
Source-Version: 3.2.10+dfsg-1
Done: Bernhard Schmidt <[email protected]>

We believe that the bug you reported is fixed in the latest version of
freeradius, which is due to be installed in the Debian FTP archive.

A summary of the changes between this version and the previous one is
attached.

Thank you for reporting the bug, which will now be closed.  If you
have further comments please address them to [email protected],
and the maintainer will reopen the bug report if appropriate.

Debian distribution maintenance software
pp.
Bernhard Schmidt <[email protected]> (supplier of updated freeradius package)

(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing [email protected])


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Wed, 08 Jul 2026 23:25:40 +0200
Source: freeradius
Architecture: source
Version: 3.2.10+dfsg-1
Distribution: unstable
Urgency: medium
Maintainer: Debian FreeRADIUS Packaging Team 
<[email protected]>
Changed-By: Bernhard Schmidt <[email protected]>
Closes: 1136504 1137454 1138374 1138814
Changes:
 freeradius (3.2.10+dfsg-1) unstable; urgency=medium
 .
   * New upstream version 3.2.10+dfsg
     - including some security fixes (Closes: #1138814)
     - Refresh d/p/dont-install-tests.diff
     - Install new tools radconf2json, raddict2json and radmod2json
   * Update d/watch to v5, new upstream URL
   * Drop obsolete library-not-linked-against-libc override
   * Cherry-pick upstream commit to fix rlm_python3 regression
   * Replace MySQL build-dep/description with MariaDB (Closes: #1137454)
   * Add procps to autopkgtest dependency (Closes: #1136504)
 .
   [ Luca Boccassi ]
   * Stop deleting system user on remove/purge
   * Let dh_installinit handle service start/stop
   * Install and use sysusers.d/tmpfiles.d config files
 .
   [ Guilherme Puida Moreira ]
   * Fix FTBFS with OpenSSL 4.0 (Closes: #1138374)
Checksums-Sha1:
 92809880162b5eba67dcb4ab9b003948470b2fe9 3616 freeradius_3.2.10+dfsg-1.dsc
 e0d1194a90e454a6d6ded95f921536d18134353b 4761389 
freeradius_3.2.10+dfsg.orig.tar.gz
 992ed2bde3bdc0dc350919abd0e2a05c848ebd8c 62312 
freeradius_3.2.10+dfsg-1.debian.tar.xz
 47645ecf64b272ebf87fa9d19800e00460403096 19572 
freeradius_3.2.10+dfsg-1_amd64.buildinfo
Checksums-Sha256:
 bb943dead196ee9dbf6510cea5a354fe30576eb68702f179dc26edbe4f606503 3616 
freeradius_3.2.10+dfsg-1.dsc
 e2b840b46763ec9891731f54ec502b9fd459ad209c228aaaba9b09f236a5ce86 4761389 
freeradius_3.2.10+dfsg.orig.tar.gz
 35192bcea4ec0e096fe88340d2232634332ae30b3f6d4ddd838e6462d5cbc8f5 62312 
freeradius_3.2.10+dfsg-1.debian.tar.xz
 2ced92ede9e3cd5d6bf6bf46a9e5630a02ad2bbe0115df17f05318f5d789677d 19572 
freeradius_3.2.10+dfsg-1_amd64.buildinfo
Files:
 e3e17cb53d603e7ee4ace89102ad61e9 3616 net optional freeradius_3.2.10+dfsg-1.dsc
 4588f3b1b8460e7c1f716592a030c08f 4761389 net optional 
freeradius_3.2.10+dfsg.orig.tar.gz
 cbb6b44253f40c9f8efd162f6251dd43 62312 net optional 
freeradius_3.2.10+dfsg-1.debian.tar.xz
 0f34af1768499e489dcaa1b979af7829 19572 net optional 
freeradius_3.2.10+dfsg-1_amd64.buildinfo

-----BEGIN PGP SIGNATURE-----
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=z+e6
-----END PGP SIGNATURE-----

Attachment: pgpTIO9SOqSNY.pgp
Description: PGP signature


--- End Message ---

Reply via email to