[Forgot Password]
Login  Register Subscribe

23631

 
 

115038

 
 

96174

 
 

909

 
 

78077

 
 

109

Paid content will be excluded from the download.


Download | Alert*
OVAL

DSA-1804 ipsec-tools -- null pointer dereference, memory leaks

ID: oval:org.mitre.oval:def:8051Date: (C)2009-12-15   (M)2017-10-04
Class: PATCHFamily: unix




Several remote vulnerabilities have been discovered in racoon, the Internet Key Exchange daemon of ipsec-tools. The The Common Vulnerabilities and Exposures project identified the following problems: Neil Kettle discovered a NULL pointer dereference on crafted fragmented packets that contain no payload. This results in the daemon crashing which can be used for denial of service attacks. Various memory leaks in the X.509 certificate authentication handling and the NAT-Traversal keepalive implementation can result in memory exhaustion and thus denial of service.

Platform:
Debian 5.0
Debian 4.0
Product:
ipsec-tools
Reference:
DSA-1804
CVE-2009-1574
CVE-2009-1632
CVE    2
CVE-2009-1574
CVE-2009-1632

© 2013 SecPod Technologies