CVE-2009-1574 (http://nvd.nist.gov/nvd.cfm?cvename=CVE-2009-1574): racoon/isakmp_frag.c in ipsec-tools before 0.7.2 allows remote attackers to cause a denial of service (crash) via crafted fragmented packets without a payload, which triggers a NULL pointer dereference.
This is just not right. *** This bug has been marked as a duplicate of bug 267135 ***