[v2.6] openswan: remote DoS (CVE-2013-6466)
Openswan 2.6.39 and earlier allows remote attackers to cause a denial of service (NULL pointer dereference and IKE daemon restart) via IKEv2 packets that lack expected payloads.
•MISC: https://libreswan.org/security/CVE-2013-6467/CVE-2013-6467.txt
•REDHAT:RHSA-2014:0185
•URL: http://rhn.redhat.com/errata/RHSA-2014-0185.html
•XF:openswan-cve20136466-dos(90524)
•URL: http://xforce.iss.net/xforce/xfdb/90524
(from redmine: issue id 2829, created on 2014-04-03, closed on 2014-04-21)
- Relations:
- parent #2826 (closed)
- Changesets:
- Revision 59f82a99 by Timo Teräs on 2014-04-18T14:45:15Z:
main/openswan: security upgrade to 2.6.41 (CVE-2013-6466)
fixes #2829
- Revision 95c7f933 by Timo Teräs on 2014-04-18T14:46:38Z:
main/openswan: security upgrade to 2.6.41 (CVE-2013-6466)
fixes #2829