Openswan and strongSwan DPD Packet Remote Denial Of Service Vulnerability

Bugtraq ID: 34296
Class: Failure to Handle Exceptional Conditions
CVE: CVE-2009-0790
Remote: Yes
Local: No
Published: Mar 30 2009 12:00AM
Updated: Sep 16 2013 12:12AM
Credit: Gerd v. Egidy of Intra2net AG
Vulnerable: SuSE SUSE Linux Enterprise Server 11
+ Linux kernel 2.6.5
SuSE SUSE Linux Enterprise Server 10
SuSE openSUSE 10.3
strongSwan strongSwan 4.2.13
strongSwan strongSwan 4.2.7
strongSwan strongSwan 4.2.6
strongSwan strongSwan 2.8.8
strongSwan strongSwan 2.1.3
S.u.S.E. openSUSE 11.1
S.u.S.E. openSUSE 11.0
Red Hat Fedora 10
Red Hat Enterprise Linux Desktop 5 client
Red Hat Enterprise Linux 5 Server
Openswan Openswan 2.6.20
Openswan Openswan 2.6.16
Openswan Openswan 2.4.13
Openswan Openswan 2.4.4
Openswan Openswan 2.4.2
Openswan Openswan 2.4
Openswan Openswan 2.3.1
Openswan Openswan 2.3
Openswan Openswan 2.2
Openswan Openswan 2.1.6
Openswan Openswan 2.1.5
+ Red Hat Fedora Core3
Openswan Openswan 2.1.4
Openswan Openswan 2.1.2
Openswan Openswan 2.1.1
Openswan Openswan 1.0.9
Openswan Openswan 1.0.8
Openswan Openswan 1.0.7
Openswan Openswan 1.0.6
Openswan Openswan 1.0.5
Openswan Openswan 1.0.4
MandrakeSoft Enterprise Server 5 x86_64
MandrakeSoft Enterprise Server 5
Gentoo Linux
Debian Linux 5.0 sparc
Debian Linux 5.0 s/390
Debian Linux 5.0 powerpc
Debian Linux 5.0 mipsel
Debian Linux 5.0 mips
Debian Linux 5.0 m68k
Debian Linux 5.0 ia-64
Debian Linux 5.0 ia-32
Debian Linux 5.0 hppa
Debian Linux 5.0 armel
Debian Linux 5.0 arm
Debian Linux 5.0 amd64
Debian Linux 5.0 alpha
Debian Linux 5.0
Debian Linux 4.0 sparc
Debian Linux 4.0 s/390
Debian Linux 4.0 powerpc
Debian Linux 4.0 mipsel
Debian Linux 4.0 mips
Debian Linux 4.0 m68k
Debian Linux 4.0 ia-64
Debian Linux 4.0 ia-32
Debian Linux 4.0 hppa
Debian Linux 4.0 armel
Debian Linux 4.0 arm
Debian Linux 4.0 amd64
Debian Linux 4.0 alpha
Debian Linux 4.0
Not Vulnerable: strongSwan strongSwan 4.2.14
strongSwan strongSwan 2.8.9
Openswan Openswan 2.6.21
Openswan Openswan 2.4.14


 

Privacy Statement
Copyright 2010, SecurityFocus