FreeRADIUS: Root privilege escalation Multiple vulnerabilities were discovered in Gentoo's systemd unit for FreeRADIUS which could lead to root privilege escalation. freeradius 2021-01-26 2021-01-26 630910 local 3.0.20-r1 3.0.20-r1

FreeRADIUS is a modular, high performance free RADIUS suite.

It was discovered that Gentoo’s FreeRADIUS systemd unit set permissions on an unsafe directory on start.

A local attacker could escalate privileges.

There is no known workaround at this time.

All FreeRADIUS users should upgrade to the latest version:

# emerge --sync # emerge --ask --oneshot --verbose ">=net-dialup/freeradius-3.0.20-r1" sam_c sam_c