MiracleLinux 4 : openswan-2.6.32-9.0.1.AXS4 (AXSA:2012-70:01)

The remote MiracleLinux 4 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2012-70:01 advisory. Openswan is a free implementation of IPsec & IKE for Linux. IPsec is the Internet Protocol Security and uses strong cryptography to provide both authentication...

Oracle: Security Advisory (ELSA-2011-1422)

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Oracle Linux 5 / 6 : openswan (ELSA-2011-1422)

The remote Oracle Linux 5 / 6 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2011-1422 advisory. 2.6.32-4.4 Resolves: 748969 CVE-2011-4073 updated patch by upstream 2.6.32-4.3 Resolves: 748969 CVE-2011-4073 Tenable has extracted the preceding descriptio...

Gentoo Security Advisory GLSA 201203-13 (Openswan)

The remote host is missing updates announced in advisory GLSA 201203-13. OpenVAS Vulnerability Test $ Description: Auto generated from Gentoo's XML based advisory Authors: Thomas Reinke Copyright: Copyright c 2012 E-Soft Inc. http://www.securityspace.com Text descriptions are largely excerpted fr...

Fedora Update for openswan FEDORA-2011-15196

Check for the Version of openswan OpenVAS Vulnerability Test Fedora Update for openswan FEDORA-2011-15196 Authors: System Generated Check Copyright: Copyright c 2012 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the...

Fedora Update for openswan FEDORA-2011-15196

The remote host is missing an update for the SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...

[BSA-061] Security Update for openswan

Harald Jenny uploaded new packages for openswan which fixed the following security problems: CVE-2011-4073 Use-after-free vulnerability in the cryptographic helper handler functionality in Openswan 2.3.0 through 2.6.36 allows remote authenticated users to cause a denial of service pluto IKE daemo...

SuSE 11.1 Security Update : openswan (SAT Patch Number 5424)

openswan's crypto helper was prone to an use-after-free flaw which could potentially allow remote attackers to cause a Denial of Service CVE-2011-4073, bnc727002. Additionally, the following issues have been fixed : - AH handshake problems bnc713986, - potential dereference of no longer valid...

SuSE 10 Security Update : openswan (ZYPP Patch Number 7836)

openswan's crypto helper was prone to an use-after-free flaw which could potentially allow remote attackers to cause a Denial of Service CVE-2011-4073, bnc727002. Additionally, a potential dereference of a no longer valid pointer has been fixed. %NASLMINLEVEL 70300 C Tenable Network Security, Inc...

Fedora 16 : openswan-2.6.37-1.fc16 (2011-15196)

new upstream release for CVE-2011-4073 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. %NASLMINLEVEL...

Fedora Update for openswan FEDORA-2011-15127

The remote host is missing an update for the SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...

Fedora 15 : openswan-2.6.37-1.fc15 (2011-15077)

New upstream release for CVE-2011-4073 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. %NASLMINLEVEL...

Fedora 14 : openswan-2.6.33-3.fc14 (2011-15127)

Fixes for CVE-2011-4073. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. %NASLMINLEVEL 70300 C Tenable...

Fedora Update for openswan FEDORA-2011-15077

The remote host is missing an update for the SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...

CVE-2011-4073

Openswan pluto IKE daemon (versions 2.3.0–2.6.36) is affected by a use-after-free in the cryptographic helper handler. This remote authenticated vulnerability can crash the daemon (DoS) via vectors in quick_outI1_continue and quick_outI1. A patch exists in Openswan 2.6.37+; upgrade to mitigate. I...

CentOS 5 : openswan (CESA-2011:1422)

Updated openswan packages that fix one security issue are now available for Red Hat Enterprise Linux 5 and 6. The Red Hat Security Response Team has rated this update as having moderate security impact. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating,...

RHEL 6 : openswan (RHSA-2011:1422)

The remote Redhat Enterprise Linux 6 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2011:1422 advisory. Openswan is a free implementation of Internet Protocol Security IPsec and Internet Key Exchange IKE. IPsec uses strong cryptography to provide both...

Moderate: Red Hat Security Advisory: openswan security update

Updated openswan packages that fix one security issue are now available for Red Hat Enterprise Linux 5 and 6. The Red Hat Security Response Team has rated this update as having moderate security impact. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating,...