>Number:         14850
>Category:       pkg
>Synopsis:       Remote Buffer Overflow in pkgsrc/net/radius
>Confidential:   no
>Severity:       serious
>Priority:       low
>Responsible:    pkg-manager
>State:          open
>Class:          change-request
>Submitter-Id:   net
>Arrival-Date:   Thu Dec 06 01:20:00 PST 2001
>Closed-Date:
>Last-Modified:
>Originator:     Martti Kuparinen
>Release:        NetBSD 1.5.2
>Organization:
>Environment:
	
System: NetBSD dhcp118 1.5.2 NetBSD 1.5.2 (KAYAK) #0: Wed Oct 3 11:34:19 PDT 2001 root@dhcp118:/usr/src/sys/arch/i386/compile/KAYAK i386


>Description:

The current pkgsrc/net/radius package has security problems
as described in http://xforce.iss.net/alerts/advise87.php

To update this package we need to do the following in addition
to the normal procedures:

- fix MASTER_SITES as the old site doesn't have the sources anymore
- maybe add LICENSE=merit-radius?
- is it possible to have Kerberos 5 support?

>How-To-Repeat:
>Fix:
>Release-Note:
>Audit-Trail:
>Unformatted: