Описание
Openswan 2.6.29 through 2.6.35 allows remote attackers to cause a denial of service (NULL pointer dereference and pluto IKE daemon crash) via an ISAKMP message with an invalid KEY_LENGTH attribute, which is not properly handled by the error handling function.
| Релиз | Статус | Примечание |
|---|---|---|
| devel | not-affected | 1:2.6.28+dfsg-5ubuntu2 |
| hardy | not-affected | 1:2.4.9+dfsg-1build1 |
| lucid | not-affected | 1:2.6.23+dfsg-1ubuntu1 |
| maverick | not-affected | 1:2.6.28+dfsg-1 |
| natty | not-affected | 1:2.6.28+dfsg-5 |
| upstream | needs-triage |
Показывать по
Ссылки на источники
EPSS
5 Medium
CVSS2
Связанные уязвимости
Openswan 2.6.29 through 2.6.35 allows remote attackers to cause a denial of service (NULL pointer dereference and pluto IKE daemon crash) via an ISAKMP message with an invalid KEY_LENGTH attribute, which is not properly handled by the error handling function.
Openswan 2.6.29 through 2.6.35 allows remote attackers to cause a denial of service (NULL pointer dereference and pluto IKE daemon crash) via an ISAKMP message with an invalid KEY_LENGTH attribute, which is not properly handled by the error handling function.
Openswan 2.6.29 through 2.6.35 allows remote attackers to cause a deni ...
Openswan 2.6.29 through 2.6.35 allows remote attackers to cause a denial of service (NULL pointer dereference and pluto IKE daemon crash) via an ISAKMP message with an invalid KEY_LENGTH attribute, which is not properly handled by the error handling function.
EPSS
5 Medium
CVSS2