CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
EPSS
Percentile
89.8%
Updated openswan packages fix security vulnerability: A NULL pointer dereference flaw was discovered in the way Openswanβs IKE daemon processed IKEv2 payloads. A remote attacker could send specially crafted IKEv2 payloads that, when processed, would lead to a denial of service (daemon crash), possibly causing existing VPN connections to be dropped (CVE-2013-6466).
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
Mageia | 3 | noarch | openswan | <Β 2.6.28-5.1 | openswan-2.6.28-5.1.mga3 |
Mageia | 4 | noarch | openswan | <Β 2.6.39-3.1 | openswan-2.6.39-3.1.mga4 |