Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2016-10396HistoryJul 06, 2017 - 1:29 a.m.
CVE-2016-10396
2017-07-0601:29:00
Debian Security Bug Tracker
security-tracker.debian.org
7
0.003 Low
EPSS
Percentile
65.7%
The racoon daemon in IPsec-Tools 0.8.2 contains a remotely exploitable computational-complexity attack when parsing and storing ISAKMP fragments. The implementation permits a remote attacker to exhaust computational resources on the remote endpoint by repeatedly sending ISAKMP fragment packets in a particular order such that the worst-case computational complexity is realized in the algorithm utilized to determine if reassembly of the fragments can take place.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 9 | all | ipsec-tools | < 1:0.8.2+20140711-8+deb9u1 | ipsec-tools_1:0.8.2+20140711-8+deb9u1_all.deb |
Related
cve
cve
CVE-2016-10396
2022-10-03 16:16:38
osv
osv
ipsec-tools - security update
2017-07-29 00:00:00
ibm
ibm
nessus
nessus
RHEL 5 : ipsec-tools (Unpatched Vulnerability)
2024-05-11 00:00:00
SUSE SLES11 Security Update : ipsec-tools (SUSE-SU-2018:0423-1)
2018-02-13 00:00:00
nvd
nvd
CVE-2016-10396
2017-07-06 01:29:00
debian
debian
[SECURITY] [DLA 1044-1] ipsec-tools security update
2017-07-30 04:25:48
freebsd
freebsd
ipsec-tools -- remotely exploitable computational-complexity attack
2016-12-02 00:00:00
redhatcve
redhatcve
CVE-2016-10396
2017-07-12 14:50:20
veracode
veracode
Denial Of Service (DoS)
2020-09-21 06:20:42
openvas
openvas
SUSE: Security Advisory (SUSE-SU-2018:0423-1)
2021-06-09 00:00:00
Ubuntu: Security Advisory (USN-3482-1)
2022-08-26 00:00:00
Debian: Security Advisory (DLA-1044-1)
2018-02-07 00:00:00
ubuntu
ubuntu
ipsec-tools vulnerability
2017-11-16 00:00:00
ubuntucve
ubuntucve
CVE-2016-10396
2017-07-05 00:00:00
prion
prion
Design/Logic Flaw
2017-07-06 01:29:00
cvelist
cvelist
CVE-2016-10396
2022-10-03 16:16:38
mageia
mageia
Updated ipsec-tools packages fix security vulnerability
2018-01-01 13:38:51