strongSwan Certificate and Identification Payload Parsing Buffer Overflow (CVE-2010-2628)

strongSwan is an open-source implementation of IPsec for Linux platforms including Debian, Ubuntu, FreeBSD and Mac OS X. It is a scalable VPN solution that supports the Internet Key Exchange IKE protocol version 1 as well as IKEv2. A remote code execution vulnerability has been reported in...

security flaw

Integer underflow in the isakmpidprint for TCPDUMP 3.8.1 and earlier allows remote attackers to cause a denial of service crash via an ISAKMP packet with an Identification payload with a length that becomes less than 8 during byte order conversion, which causes an out-of-bounds read, as...