ipsec-tools vulnerabilities

2009-06-09T00:00:00
ID USN-785-1
Type ubuntu
Reporter Ubuntu
Modified 2009-06-09T00:00:00

Description

It was discovered that ipsec-tools did not properly handle certain fragmented packets. A remote attacker could send specially crafted packets to the server and cause a denial of service. (CVE-2009-1574)

It was discovered that ipsec-tools did not properly handle memory usage when verifying certificate signatures or processing nat-traversal keep-alive messages. A remote attacker could send specially crafted packets to the server and exhaust available memory, leading to a denial of service. (CVE-2009-1632)