Описание
libreswan 3.9 through 3.12 allows remote attackers to cause a denial of service (daemon restart) via an IKEv1 packet with (1) unassigned bits set in the IPSEC DOI value or (2) the next payload value set to ISAKMP_NEXT_SAK.
libreswan 3.9 through 3.12 allows remote attackers to cause a denial of service (daemon restart) via an IKEv1 packet with (1) unassigned bits set in the IPSEC DOI value or (2) the next payload value set to ISAKMP_NEXT_SAK.
Ссылки
- https://nvd.nist.gov/vuln/detail/CVE-2015-3204
- https://access.redhat.com/errata/RHSA-2015:1154
- https://access.redhat.com/security/cve/CVE-2015-3204
- https://bugzilla.redhat.com/show_bug.cgi?id=1223361
- https://libreswan.org/security/CVE-2015-3204/CVE-2015-3204-libreswan.patch
- https://libreswan.org/security/CVE-2015-3204/CVE-2015-3204.txt
- https://security.gentoo.org/glsa/201603-13
- http://rhn.redhat.com/errata/RHSA-2015-1154.html
- http://www.securityfocus.com/bid/75392
Связанные уязвимости
libreswan 3.9 through 3.12 allows remote attackers to cause a denial of service (daemon restart) via an IKEv1 packet with (1) unassigned bits set in the IPSEC DOI value or (2) the next payload value set to ISAKMP_NEXT_SAK.
libreswan 3.9 through 3.12 allows remote attackers to cause a denial of service (daemon restart) via an IKEv1 packet with (1) unassigned bits set in the IPSEC DOI value or (2) the next payload value set to ISAKMP_NEXT_SAK.
libreswan 3.9 through 3.12 allows remote attackers to cause a denial o ...
ELSA-2015-1154: libreswan security, bug fix and enhancement update (MODERATE)