ipsec-tools vulnerabilities

2009-06-09T00:00:00
ID USN-785-1
Type ubuntu
Reporter Ubuntu
Modified 2009-06-09T00:00:00

Description

It was discovered that ipsec-tools did not properly handle certain
fragmented packets. A remote attacker could send specially crafted packets
to the server and cause a denial of service. (CVE-2009-1574)

It was discovered that ipsec-tools did not properly handle memory usage
when verifying certificate signatures or processing nat-traversal
keep-alive messages. A remote attacker could send specially crafted packets
to the server and exhaust available memory, leading to a denial of service.
(CVE-2009-1632)