[v2.7] openswan: remote DoS (CVE-2013-6466)
Openswan 2.6.39 and earlier allows remote attackers to cause a denial of service (NULL pointer dereference and IKE daemon restart) via IKEv2 packets that lack expected payloads.
•MISC: https://libreswan.org/security/CVE-2013-6467/CVE-2013-6467.txt
•REDHAT:RHSA-2014:0185
•URL: http://rhn.redhat.com/errata/RHSA-2014-0185.html
•XF:openswan-cve20136466-dos(90524)
•URL: http://xforce.iss.net/xforce/xfdb/90524
(from redmine: issue id 2830, created on 2014-04-03, closed on 2014-04-21)
- Relations:
- parent #2826 (closed)
- Changesets:
- Revision f61b6c86 by Timo Teräs on 2014-04-17T09:01:16Z:
main/openswan: security upgrade to 2.6.41 (CVE-2013-6466)
fixes #2830