Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
redhatRedHatRHSA-2011:1356
HistoryOct 05, 2011 - 12:00 a.m.

(RHSA-2011:1356) Moderate: openswan security update

2011-10-0500:00:00
access.redhat.com
13

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

0.007 Low

EPSS

Percentile

81.0%

JSON

Openswan is a free implementation of Internet Protocol Security (IPsec)
and Internet Key Exchange (IKE). IPsec uses strong cryptography to provide
both authentication and encryption services. These services allow you to
build secure tunnels through untrusted networks.

A NULL pointer dereference flaw was found in the way Openswan’s pluto IKE
daemon handled certain error conditions. A remote, unauthenticated attacker
could send a specially-crafted IKE packet that would crash the pluto
daemon. (CVE-2011-3380)

Red Hat would like to thank the Openswan project for reporting this issue.
Upstream acknowledges Paul Wouters as the original reporter.

All users of openswan are advised to upgrade to these updated packages,
which contain a backported patch to correct this issue. After installing
this update, the ipsec service will be restarted automatically.

OSVersionArchitecturePackageVersionFilename
RedHat6ppc64openswan< 2.6.32-4.el6_1.2openswan-2.6.32-4.el6_1.2.ppc64.rpm
RedHat6x86_64openswan-doc< 2.6.32-4.el6_1.2openswan-doc-2.6.32-4.el6_1.2.x86_64.rpm
RedHat6s390xopenswan< 2.6.32-4.el6_1.2openswan-2.6.32-4.el6_1.2.s390x.rpm
RedHat6x86_64openswan-debuginfo< 2.6.32-4.el6_1.2openswan-debuginfo-2.6.32-4.el6_1.2.x86_64.rpm
RedHat6srcopenswan< 2.6.32-4.el6_1.2openswan-2.6.32-4.el6_1.2.src.rpm
RedHat6s390xopenswan-debuginfo< 2.6.32-4.el6_1.2openswan-debuginfo-2.6.32-4.el6_1.2.s390x.rpm
RedHat6s390xopenswan-doc< 2.6.32-4.el6_1.2openswan-doc-2.6.32-4.el6_1.2.s390x.rpm
RedHat6i686openswan< 2.6.32-4.el6_1.2openswan-2.6.32-4.el6_1.2.i686.rpm
RedHat6x86_64openswan< 2.6.32-4.el6_1.2openswan-2.6.32-4.el6_1.2.x86_64.rpm
RedHat6i686openswan-doc< 2.6.32-4.el6_1.2openswan-doc-2.6.32-4.el6_1.2.i686.rpm
Rows per page:
1-10 of 131

Related

openvas 6
nessus 9
amazon 1
ubuntucve 1
fedora 5
cve 1
veracode 1
prion 1
oraclelinux 1
cvelist 1
nvd 1
openvas
openvas
RedHat Update for openswan RHSA-2011:1356-01
2012-07-09 00:00:00
Fedora Update for openswan FEDORA-2011-13825
2012-04-02 00:00:00
Oracle: Security Advisory (ELSA-2011-1356)
2015-10-06 00:00:00
nessus
nessus
Fedora 15 : openswan-2.6.36-1.fc15 (2011-13862)
2011-10-14 00:00:00
Fedora 14 : openswan-2.6.33-2.fc14 (2011-13864)
2011-10-14 00:00:00
Amazon Linux AMI : openswan (ALAS-2011-06)
2013-09-04 00:00:00
amazon
amazon
Medium: openswan
2011-10-10 23:54:00
ubuntucve
ubuntucve
CVE-2011-3380
2011-11-17 00:00:00
fedora
fedora
[SECURITY] Fedora 16 Update: openswan-2.6.36-1.fc16
2011-10-16 00:57:50
[SECURITY] Fedora 14 Update: openswan-2.6.33-2.fc14
2011-10-13 23:55:31
[SECURITY] Fedora 15 Update: openswan-2.6.36-1.fc15
2011-10-13 23:50:56
cve
cve
CVE-2011-3380
2011-11-17 19:55:01
veracode
veracode
Denial Of Service (DoS)
2020-04-10 01:07:32
prion
prion
Null pointer dereference
2011-11-17 19:55:00
oraclelinux
oraclelinux
openswan security update
2011-10-05 00:00:00
cvelist
cvelist
CVE-2011-3380
2011-11-17 19:00:00
nvd
nvd
CVE-2011-3380
2011-11-17 19:55:01

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

0.007 Low

EPSS

Percentile

81.0%

JSON
Related for RHSA-2011:1356
openvas6nessus9amazon1ubuntucve1fedora5cve1veracode1prion1oraclelinux1cvelist1nvd1