Lucene search
Ubuntu.comUB:CVE-2011-3380HistoryNov 17, 2011 - 12:00 a.m.
CVE-2011-3380
2011-11-1700:00:00
ubuntu.com
ubuntu.com
5
0.007 Low
EPSS
Percentile
80.9%
Openswan 2.6.29 through 2.6.35 allows remote attackers to cause a denial of
service (NULL pointer dereference and pluto IKE daemon crash) via an ISAKMP
message with an invalid KEY_LENGTH attribute, which is not properly handled
by the error handling function.
Bugs
Notes
| Author | Note |
|---|---|
| mdeslaur | introduced in openswan 2.6.29 |
Related
nessus
nessus
RHEL 6 : openswan (RHSA-2011:1356)
2011-10-06 00:00:00
Oracle Linux 6 : openswan (ELSA-2011-1356)
2013-07-12 00:00:00
Amazon Linux AMI : openswan (ALAS-2011-6)
2014-10-12 00:00:00
fedora
fedora
[SECURITY] Fedora 14 Update: openswan-2.6.33-2.fc14
2011-10-13 23:55:31
[SECURITY] Fedora 16 Update: openswan-2.6.36-1.fc16
2011-10-16 00:57:50
[SECURITY] Fedora 15 Update: openswan-2.6.36-1.fc15
2011-10-13 23:50:56
cve
cve
CVE-2011-3380
2011-11-17 19:55:01
openvas
openvas
Amazon Linux: Security Advisory (ALAS-2011-6)
2015-09-08 00:00:00
RedHat Update for openswan RHSA-2011:1356-01
2012-07-09 00:00:00
Fedora Update for openswan FEDORA-2011-13825
2012-04-02 00:00:00
veracode
veracode
Denial Of Service (DoS)
2020-04-10 01:07:32
prion
prion
Null pointer dereference
2011-11-17 19:55:00
oraclelinux
oraclelinux
openswan security update
2011-10-05 00:00:00
cvelist
cvelist
CVE-2011-3380
2011-11-17 19:00:00
redhat
redhat
(RHSA-2011:1356) Moderate: openswan security update
2011-10-05 00:00:00
amazon
amazon
Medium: openswan
2011-10-10 23:54:00