CERT Advisory: Vulnerabilities in Various Implementations of the RADIUS Protocol
Covers two vulnerabilities: the digest calculation buffer overflow, and the inadequate validation of the vendor-length of vendor-specific attributes.