[SECURITY] Fedora 15 Update: openswan-2.6.36-1.fc15

Openswan is a free implementation of IPsec & IKE for Linux. IPsec is the Internet Protocol Security and uses strong cryptography to provide both authentication and encryption services. These services allow you to build secure tunnels through untrusted networks. Everything passing through the...

Apple iOS < 7.0 Multiple Vulnerabilities

Binary data 8013.prm...

CentOS Update for openswan CESA-2009:0402 centos5 i386

Check for the Version of openswan OpenVAS Vulnerability Test CentOS Update for openswan CESA-2009:0402 centos5 i386 Authors: System Generated Check Copyright: Copyright c 2011 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it...

CentOS Update for openswan CESA-2009:1138 centos5 i386

Check for the Version of openswan OpenVAS Vulnerability Test CentOS Update for openswan CESA-2009:1138 centos5 i386 Authors: System Generated Check Copyright: Copyright c 2011 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it...

CentOS Update for ipsec-tools CESA-2009:1036 centos5 i386

Check for the Version of ipsec-tools OpenVAS Vulnerability Test CentOS Update for ipsec-tools CESA-2009:1036 centos5 i386 Authors: System Generated Check Copyright: Copyright c 2011 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or...

CentOS Update for ipsec-tools CESA-2009:1036 centos5 i386

The remote host is missing an update for the SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...

Cisco Security Advisory: Multiple Vulnerabilities in Cisco AnyConnect Secure Mobility Client

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Cisco Security Advisory: Multiple Vulnerabilities in Cisco AnyConnect Secure Mobility Client Advisory ID: cisco-sa-20110601-ac Revision 1.0 For Public Release 2011 June 01 1600 UTC GMT...

CVE-2011-2147

Technical details for CVE-2011-2147 are not provided in the connected documents. The initial description summarizes local permission issues in OpenSwan 2.2.x; monitor for updated advisories or vendor patches.

CVE-2011-2147

Openswan 2.2.x does not properly restrict permissions for 1 /var/run/starter.pid, related to starter.c in the IPsec starter, and 2 /var/lock/subsys/ipsec, which allows local users to kill arbitrary processes by writing a PID to a file, or possibly bypass disk quotas by writing arbitrary data to a...

CVE-2011-1547

Multiple stack consumption vulnerabilities in the kernel in NetBSD 4.0, 5.0 before 5.0.3, and 5.1 before 5.1.1, when IPsec is enabled, allow remote attackers to cause a denial of service memory corruption and panic or possibly have unspecified other impact via a crafted 1 IPv4 or 2 IPv6 packet wi...

Memory corruption

Multiple stack consumption vulnerabilities in the kernel in NetBSD 4.0, 5.0 before 5.0.3, and 5.1 before 5.1.1, when IPsec is enabled, allow remote attackers to cause a denial of service memory corruption and panic or possibly have unspecified other impact via a crafted 1 IPv4 or 2 IPv6 packet wi...

CVE-2011-1547

CVE-2011-1547 affects NetBSD-derived IPComp/IPsec stacks. Affected: NetBSD 4.0, 5.0 before 5.0.3, and 5.1 before 5.1.1. Root cause: kernel handling of nested IPComp payloads can overflow the stack, leading to remote memory corruption and panics; some sources describe pre-auth kernel memory corrup...

Multiple BSD systems IPSec IP Compression stack overflow

kernel stack overflow on packet parsing...

BSD derived RFC3173 IPComp encapsulation will expand arbitrarily nested payload

BSD derived RFC3173 IPComp encapsulation will expand arbitrarily nested payload ------------------------------------------------------------------------------- Gruezi, this document describes CVE-2011-1547. RFC3173 ip payload compression, henceforth ipcomp, is a protocol intended to provide...

IPComp encapsulation pre-auth kernel memory corruption

Exploit for bsd platform in category dos / poc from: http://lists.grok.org.uk/pipermail/full-disclosure/2011-April/080031.html BSD derived RFC3173 IPComp encapsulation will expand arbitrarily nested payload ------------------------------------------------------------------------------- Gruezi, th...

IPComp - encapsulation Kernel Memory Corruption

IPComp - encapsulation Kernel Memory Corruption // source: http://lists.grok.org.uk/pipermail/full-disclosure/2011-April/080031.html BSD derived RFC3173 IPComp encapsulation will expand arbitrarily nested payload -------------------------------------------------------------------------------...

IPComp - encapsulation Kernel Memory Corruption

// source: http://lists.grok.org.uk/pipermail/full-disclosure/2011-April/080031.html BSD derived RFC3173 IPComp encapsulation will expand arbitrarily nested payload ------------------------------------------------------------------------------- Gruezi, this document describes CVE-2011-1547. RFC31...

NGS00014 Technical Advisory: Cisco IPSec VPN Implementation Group Name Enumeration

======= Summary ======= Name: Cisco IPSec VPN Implementation Group Name Enumeration Release Date: 22 March 2011 Reference: NGS00014 Discoverer: Gavin Jones Vendor: Cisco Vendor Reference: CSCei51783, CSCtj96108 Systems Affected: ASA 5500 Series Adaptive Security Appliances -Cisco PIX 500 Series...

Cisco IPSec information leak

It's possible to check groupname existance...

kernel security, bug fix, and enhancement update

2.6.32-71.18.1.el6 - netdrv ixgbe: make sure FCoE DDP user buffers are really released by the HW Frantisek Hrbata 674002 617193 - netdrv ixgbe: invalidate FCoE DDP context when no error status is available Frantisek Hrbata 674002 617193 - netdrv ixgbe: avoid doing FCoE DDP when adapter is DOWN or...