Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

ubuntu логотип

CVE-2009-2185

Опубликовано: 25 июн. 2009
Источник: ubuntu
Приоритет: medium
CVSS2: 5

Описание

The ASN.1 parser (pluto/asn1.c, libstrongswan/asn1/asn1.c, libstrongswan/asn1/asn1_parser.c) in (a) strongSwan 2.8 before 2.8.10, 4.2 before 4.2.16, and 4.3 before 4.3.2; and (b) openSwan 2.6 before 2.6.22 and 2.4 before 2.4.15 allows remote attackers to cause a denial of service (pluto IKE daemon crash) via an X.509 certificate with (1) crafted Relative Distinguished Names (RDNs), (2) a crafted UTCTIME string, or (3) a crafted GENERALIZEDTIME string.

РелизСтатусПримечание
dapper

ignored

end of life
devel

not-affected

hardy

released

1:2.4.9+dfsg-1ubuntu0.1
intrepid

released

1:2.4.12+dfsg-1.3+lenny2build0.8.10.1
jaunty

released

1:2.4.12+dfsg-1.3+lenny2build0.9.04.1
karmic

not-affected

lucid

not-affected

maverick

not-affected

natty

not-affected

oneiric

not-affected

Показывать по

РелизСтатусПримечание
dapper

DNE

devel

not-affected

4.3.2-1.1ubuntu1
hardy

ignored

end of life
intrepid

ignored

end of life, was needed
jaunty

ignored

end of life
karmic

ignored

end of life
lucid

not-affected

4.3.2-1.1ubuntu1
maverick

not-affected

4.3.2-1.1ubuntu1
natty

not-affected

4.3.2-1.1ubuntu1
oneiric

not-affected

4.3.2-1.1ubuntu1

Показывать по

Ссылки на источники

5 Medium

CVSS2

Связанные уязвимости

redhat логотип

CVE-2009-2185

redhat
больше 16 лет назад

The ASN.1 parser (pluto/asn1.c, libstrongswan/asn1/asn1.c, libstrongswan/asn1/asn1_parser.c) in (a) strongSwan 2.8 before 2.8.10, 4.2 before 4.2.16, and 4.3 before 4.3.2; and (b) openSwan 2.6 before 2.6.22 and 2.4 before 2.4.15 allows remote attackers to cause a denial of service (pluto IKE daemon crash) via an X.509 certificate with (1) crafted Relative Distinguished Names (RDNs), (2) a crafted UTCTIME string, or (3) a crafted GENERALIZEDTIME string.

nvd логотип

CVE-2009-2185

nvd
больше 16 лет назад

The ASN.1 parser (pluto/asn1.c, libstrongswan/asn1/asn1.c, libstrongswan/asn1/asn1_parser.c) in (a) strongSwan 2.8 before 2.8.10, 4.2 before 4.2.16, and 4.3 before 4.3.2; and (b) openSwan 2.6 before 2.6.22 and 2.4 before 2.4.15 allows remote attackers to cause a denial of service (pluto IKE daemon crash) via an X.509 certificate with (1) crafted Relative Distinguished Names (RDNs), (2) a crafted UTCTIME string, or (3) a crafted GENERALIZEDTIME string.

debian логотип

CVE-2009-2185

debian
больше 16 лет назад

The ASN.1 parser (pluto/asn1.c, libstrongswan/asn1/asn1.c, libstrongsw ...

github логотип

GHSA-9g49-v8fv-gvm8

github
больше 3 лет назад

The ASN.1 parser (pluto/asn1.c, libstrongswan/asn1/asn1.c, libstrongswan/asn1/asn1_parser.c) in (a) strongSwan 2.8 before 2.8.10, 4.2 before 4.2.16, and 4.3 before 4.3.2; and (b) openSwan 2.6 before 2.6.22 and 2.4 before 2.4.15 allows remote attackers to cause a denial of service (pluto IKE daemon crash) via an X.509 certificate with (1) crafted Relative Distinguished Names (RDNs), (2) a crafted UTCTIME string, or (3) a crafted GENERALIZEDTIME string.

oracle-oval логотип

ELSA-2009-1138

oracle-oval
больше 16 лет назад

ELSA-2009-1138: openswan security update (IMPORTANT)

5 Medium

CVSS2