18 matches found
MiracleLinux 4 : openswan-2.6.32-20.0.1.AXS4 (AXSA:2013-445:01)
The remote MiracleLinux 4 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2013-445:01 advisory. Openswan is a free implementation of IPsec & IKE for Linux. IPsec is the Internet Protocol Security and uses strong cryptography to provide both authenticatio...
SUSE: Security Advisory (SUSE-SU-2013:1150-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Gentoo Security Advisory GLSA 201401-09
Gentoo Linux Local Security Checks GLSA 201401-09 SPDX-FileCopyrightText: 2015 Eero Volotinen Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later ifdescription...
[SECURITY] [DSA 2893-1] openswan security update
------------------------------------------------------------------------- Debian Security Advisory DSA-2893-1 [email protected] http://www.debian.org/security/ Yves-Alexis Perez March 31, 2014 http://www.debian.org/security/faq -...
Debian Security Advisory DSA 2893-1 (openswan - security update)
Two vulnerabilities were fixed in Openswan, an IKE/IPsec implementation for Linux. CVE-2013-2053 During an audit of Libreswan with which Openswan shares some code, Florian Weimer found a remote buffer overflow in the atodn function. This vulnerability can be triggered when Opportunistic Encryptio...
Amazon Linux AMI : openswan (ALAS-2013-192)
A buffer overflow flaw was found in Openswan. If Opportunistic Encryption were enabled 'oe=yes' in '/etc/ipsec.conf' and an RSA key configured, an attacker able to cause a system to perform a DNS lookup for an attacker-controlled domain containing malicious records such as by sending an email tha...
Buffer overflow
Buffer overflow in the atodn function in libreswan 3.0 and 3.1, when Opportunistic Encryption is enabled and an RSA key is being used, allows remote attackers to cause a denial of service pluto IKE daemon crash and possibly execute arbitrary code via crafted DNS TXT records. NOTE: this might be t...
Buffer overflow
Buffer overflow in the atodn function in strongSwan 2.0.0 through 4.3.4, when Opportunistic Encryption is enabled and an RSA key is being used, allows remote attackers to cause a denial of service pluto IKE daemon crash and possibly execute arbitrary code via crafted DNS TXT records. NOTE: this...
CVE-2013-2053
CVE-2013-2053 is a remote, buffer overflow vulnerability in the Openswan 2.6.x codebase (atodn()) that can be triggered when Opportunistic Encryption is enabled and the peer’s DNS PTR record is attacker-controlled. An adversary could cause the pluto IKE daemon to crash and, in some cases, execute...
SuSE 10 Security Update : openswan (ZYPP Patch Number 8627)
This openswan update fixes a remote buffer overflow issue. bnc824316 / CVE-2013-2053 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The text description of this plugin is C Novell, Inc. include'deprecatednasllevel.inc'; include'compat.inc'; if description scriptid67199; scriptversion"1.5";...
Important: openswan
Issue Overview: A buffer overflow flaw was found in Openswan. If Opportunistic Encryption were enabled "oe=yes" in "/etc/ipsec.conf" and an RSA key configured, an attacker able to cause a system to perform a DNS lookup for an attacker-controlled domain containing malicious records such as by...
RedHat Update for openswan RHSA-2013:0827-01
Check for the Version of openswan OpenVAS Vulnerability Test RedHat Update for openswan RHSA-2013:0827-01 Authors: System Generated Check Copyright: Copyright c 2013 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the...
RedHat Update for openswan RHSA-2013:0827-01
The remote host is missing an update for the SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CentOS Update for openswan CESA-2013:0827 centos6
The remote host is missing an update for the SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CentOS Update for openswan CESA-2013:0827 centos5
The remote host is missing an update for the SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
RHEL 5 / 6 : openswan (RHSA-2013:0827)
Updated openswan packages that fix one security issue are now available for Red Hat Enterprise Linux 5 and 6. The Red Hat Security Response Team has rated this update as having important security impact. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating...
CentOS 5 / 6 : openswan (CESA-2013:0827)
Updated openswan packages that fix one security issue are now available for Red Hat Enterprise Linux 5 and 6. The Red Hat Security Response Team has rated this update as having important security impact. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating...
openswan security update
2.6.32-20 Resolves: 960234 - CVE-2013-2053...