Gentoo Websites Logo
Go to: Gentoo Home Documentation Forums Lists Bugs Planet Store Wiki Get Gentoo!
Bug 267135 (CVE-2009-1574) - <net-firewall/ipsec-tools-0.7.2 fragmentation remote DoS (CVE-2009-{1574,1632})
Summary: <net-firewall/ipsec-tools-0.7.2 fragmentation remote DoS (CVE-2009-{1574,1632})
Status: RESOLVED FIXED
Alias: CVE-2009-1574
Product: Gentoo Security
Classification: Unclassified
Component: Vulnerabilities (show other bugs)
Hardware: All Linux
: High normal (vote)
Assignee: Gentoo Security
URL: http://sourceforge.net/project/showno...
Whiteboard: B3 [glsa]
Keywords:
: 268841 (view as bug list)
Depends on:
Blocks:
 
Reported: 2009-04-22 18:57 UTC by Robert Buchholz (RETIRED)
Modified: 2009-05-24 13:28 UTC (History)
2 users (show)

See Also:
Package list:
Runtime testing required: ---

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.
Description Robert Buchholz (RETIRED) gentoo-dev 2009-04-22 18:57:24 UTC 
ipsec tools fixes a "remote crash in fragmentation code"
Comment 1 Daniel Black (RETIRED) gentoo-dev 2009-04-23 13:35:02 UTC 
+ipsec-tools-0.7.2.ebuild
Comment 2 Markus Meier gentoo-dev 2009-04-23 18:42:41 UTC 
amd64/x86 stable
Comment 3 Friedrich Oslage (RETIRED) gentoo-dev 2009-04-26 11:56:51 UTC 
sparc stable
Comment 4 Brent Baude (RETIRED) gentoo-dev 2009-04-26 14:10:27 UTC 
ppc done
Comment 5 Daniel Black (RETIRED) gentoo-dev 2009-04-29 01:05:54 UTC 
vote yes for constancy with bug #232831
Comment 6 Alex Legler (RETIRED) archtester gentoo-dev Security 2009-05-06 19:03:47 UTC 
*** Bug 268841 has been marked as a duplicate of this bug. ***
Comment 7 Alex Legler (RETIRED) archtester gentoo-dev Security 2009-05-06 19:05:27 UTC 
Name:      CVE-2009-1574
URL:       http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-1574

racoon/isakmp_frag.c in ipsec-tools before 0.7.2 allows remote
attackers to cause a denial of service (crash) via crafted fragmented
packets without a payload, which triggers a NULL pointer dereference.
Comment 8 Alex Legler (RETIRED) archtester gentoo-dev Security 2009-05-06 19:13:12 UTC 
Got rid of the two old vulnerable versions.

Voting YES for a GLSA.
Comment 9 Stefan Behte (RETIRED) gentoo-dev Security 2009-05-06 21:47:06 UTC 
Yes, too. Request filed.
Comment 10 Alex Legler (RETIRED) archtester gentoo-dev Security 2009-05-15 09:18:54 UTC 
CVE-2009-1632 (http://nvd.nist.gov/nvd.cfm?cvename=CVE-2009-1632):
  Multiple memory leaks in Ipsec-tools before 0.7.2 allow remote
  attackers to cause a denial of service (memory consumption) via
  vectors involving (1) signature verification during user
  authentication with X.509 certificates, related to the
  eay_check_x509sign function in src/racoon/crypto_openssl.c; and (2)
  the NAT-Traversal (aka NAT-T) keepalive implementation, related to
  src/racoon/nattraversal.c.
Comment 11 Alex Legler (RETIRED) archtester gentoo-dev Security 2009-05-24 13:28:43 UTC 
GLSA 200905-03