Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2009-1957HistoryJun 08, 2009 - 1:00 a.m.
CVE-2009-1957
2009-06-0801:00:00
Debian Security Bug Tracker
security-tracker.debian.org
11
5 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
0.078 Low
EPSS
Percentile
94.2%
charon/sa/ike_sa.c in the charon daemon in strongSWAN before 4.3.1 allows remote attackers to cause a denial of service (NULL pointer dereference and crash) via an invalid IKE_SA_INIT request that triggers “an incomplete state,” followed by a CREATE_CHILD_SA request.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | strongswan | < 4.2.14-1.1 | strongswan_4.2.14-1.1_all.deb |
| Debian | 11 | all | strongswan | < 4.2.14-1.1 | strongswan_4.2.14-1.1_all.deb |
| Debian | 999 | all | strongswan | < 4.2.14-1.1 | strongswan_4.2.14-1.1_all.deb |
| Debian | 13 | all | strongswan | < 4.2.14-1.1 | strongswan_4.2.14-1.1_all.deb |
Related
nvd
nvd
CVE-2009-1957
2009-06-08 01:00:00
prion
prion
Null pointer dereference
2009-06-08 01:00:00
cve
cve
CVE-2009-1957
2009-06-08 01:00:00
ubuntucve
ubuntucve
CVE-2009-1957
2009-06-08 00:00:00
cvelist
cvelist
CVE-2009-1957
2009-06-06 18:00:00
nessus
nessus
SuSE 11 Security Update : strongswan (SAT Patch Number 966)
2009-09-24 00:00:00
SuSE 10 Security Update : strongswan (ZYPP Patch Number 6286)
2009-09-24 00:00:00
openSUSE Security Update : strongswan (strongswan-965)
2009-07-21 00:00:00
openvas
openvas
strongSwan IKE_SA_INIT and IKE_AUTH DoS Vulnerabilities
2009-06-19 00:00:00
SLES11: Security update for strongswan
2009-10-11 00:00:00
SLES11: Security update for strongswan
2009-10-11 00:00:00
debian
debian
[SECURITY] [DSA 1899-1] New strongswan packages fix denial of service
2009-10-02 18:41:34
securityvulns
securityvulns
[SECURITY] [DSA 1899-1] New strongswan packages fix denial of service
2009-10-03 00:00:00
OpenSwan / StrongSwan multiple security vulnerabilities
2009-10-03 00:00:00
osv
osv
strongswan - denial of service
2009-10-02 00:00:00
5 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
0.078 Low
EPSS
Percentile
94.2%
Related for DEBIANCVE:CVE-2009-1957