packet.py in pyrad before 2.1 uses weak random numbers to generate RADIUS authenticators and hash passwords, which makes it easier for remote attackers to obtain sensitive information via a brute force attack.
Software | From | Fixed in |
---|---|---|
fedoraproject / fedora | 18 | 18.x |
fedoraproject / fedora | 19 | 19.x |
fedoraproject / fedora | 20 | 20.x |
pyrad_project / pyrad | - | 2.1 |