Bug 19917 - DoS vulnerability - remote crash in fragmentation code
Summary: DoS vulnerability - remote crash in fragmentation code
Status: CLOSED FIXED
Alias: None
Product: Sisyphus
Classification: Development
Component: ipsec-tools (show other bugs)
Version: unstable
Hardware: all Linux
: P3 blocker
Assignee: Alexey Shabalin
QA Contact: qa-sisyphus
URL: http://sourceforge.net/mailarchive/fo...
Keywords: security
Depends on:
Blocks:
 
Reported: 2009-05-05 09:39 MSD by Vladimir Lettiev
Modified: 2010-04-24 11:58 MSD (History)
0 users

See Also:


Attachments

Note You need to log in before you can comment on or make changes to this bug.
Description Vladimir Lettiev 2009-05-05 09:39:44 MSD
Обнаружена уязвимость в ipsec-tools, позволяющая привести к краху процесса при обработке фрагментированных isakmp пакетов.
Upstream выпустил исправление в версии 0.7.2
Comment 1 Vladimir Lettiev 2010-04-24 11:58:16 MSD
fixed
Comment 2 Vladimir Lettiev 2010-04-24 11:58:34 MSD
closed