Gentoo Websites Logo
Go to: Gentoo Home Documentation Forums Lists Bugs Planet Store Wiki Get Gentoo!
Bug 275096 (CVE-2009-2185) - <net-misc/strongswan-{4.2.16,4.3.2}: DoS vulnerabilities (CVE-2009-2185)
Summary: <net-misc/strongswan-{4.2.16,4.3.2}: DoS vulnerabilities (CVE-2009-2185)
Status: RESOLVED FIXED
Alias: CVE-2009-2185
Product: Gentoo Security
Classification: Unclassified
Component: Vulnerabilities (show other bugs)
Hardware: All Linux
: High trivial
Assignee: Gentoo Security
URL: https://lists.strongswan.org/pipermai...
Whiteboard: ~3 [noglsa]
Keywords:
: 275234 (view as bug list)
Depends on:
Blocks:
 
Reported: 2009-06-22 19:35 UTC by Tom Prince
Modified: 2011-10-30 22:39 UTC (History)
1 user (show)

See Also:
Package list:
Runtime testing required: ---

Attachments
ebuild for 4.3.2 (strongswan-4.3.2.ebuild,2.74 KB, text/plain)
2009-06-22 19:36 UTC, Tom Prince 		no flags Details
View All Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.
Description Tom Prince 2009-06-22 19:35:57 UTC 
This fixes a security vulnerability.

https://lists.strongswan.org/pipermail/announce/2009-June/000053.html

And fixes compilation with glibc 2.10. (Bug #272511)
Comment 1 Tom Prince 2009-06-22 19:36:41 UTC 
Created attachment 195497 [details]
ebuild for 4.3.2
Comment 2 Tobias Heinlein (RETIRED) gentoo-dev 2009-06-23 12:09:39 UTC 
Tom, thanks for the report. We really appreciate your help. However, it's confusing to just attach an ebuild, especially when there's no change to the one in the portage tree. Saying "just bumping it works" or a unified diff would be better.
Comment 3 Tobias Heinlein (RETIRED) gentoo-dev 2009-06-23 12:46:37 UTC 
I have no idea why you attached the old 4.2.8 ebuild, but using the 4.2.15 ebuild for both 4.2.16 and 4.3.2 seems to be wise. Done that now.
Comment 4 Tobias Heinlein (RETIRED) gentoo-dev 2009-06-23 12:47:17 UTC 
strongswan is ~arch only, [noglsa].
Comment 5 Robert Buchholz (RETIRED) gentoo-dev 2009-06-24 00:37:06 UTC 
*** Bug 275234 has been marked as a duplicate of this bug. ***