Summary: | net-misc/strongswan <4.2.7 charon Key Exchange DoS (CVE-2008-4551) | ||
---|---|---|---|
Product: | Gentoo Security | Reporter: | Robert Buchholz (RETIRED) <rbu> |
Component: | Vulnerabilities | Assignee: | Gentoo Security <security> |
Status: | RESOLVED FIXED | ||
Severity: | normal | CC: | maintainer-needed, robbat2 |
Priority: | High | ||
Version: | unspecified | ||
Hardware: | All | ||
OS: | Linux | ||
URL: | http://labs.mudynamics.com/advisories/MU-200809-01.txt | ||
Whiteboard: | ~3 [noglsa] | ||
Package list: | Runtime testing required: | --- |
Description
Robert Buchholz (RETIRED)
2008-09-24 02:01:05 UTC
4.2.7 in CVS. It seems this does not affect our stable 2.8.0, since the code is not present there. ====================================================== Name: CVE-2008-4551 Status: Candidate URL: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-4551 Reference: MISC:http://labs.mudynamics.com/advisories/MU-200809-01.txt Reference: CONFIRM:http://download.strongswan.org/CHANGES4.txt Reference: BID:31291 Reference: URL:http://www.securityfocus.com/bid/31291 Reference: FRSIRT:ADV-2008-2660 Reference: URL:http://www.frsirt.com/english/advisories/2008/2660 Reference: SECTRACK:1020903 Reference: URL:http://www.securitytracker.com/id?1020903 Reference: SECUNIA:31963 Reference: URL:http://secunia.com/advisories/31963 strongSwan 4.2.6 and earlier allows remote attackers to cause a denial of service (daemon crash) via an IKE_SA_INIT message with a large number of NULL values in a Key Exchange payload, which triggers a NULL pointer dereference for the return value of the mpz_export function in the GNU Multiprecision Library (GMP). |