Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2009-1958HistoryJun 08, 2009 - 1:00 a.m.
CVE-2009-1958
2009-06-0801:00:00
Debian Security Bug Tracker
security-tracker.debian.org
11
5 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
0.06 Low
EPSS
Percentile
93.5%
charon/sa/tasks/child_create.c in the charon daemon in strongSWAN before 4.3.1 switches the NULL checks for TSi and TSr payloads, which allows remote attackers to cause a denial of service via an IKE_AUTH request without a (1) TSi or (2) TSr traffic selector.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | strongswan | < 4.2.14-1.1 | strongswan_4.2.14-1.1_all.deb |
| Debian | 11 | all | strongswan | < 4.2.14-1.1 | strongswan_4.2.14-1.1_all.deb |
| Debian | 999 | all | strongswan | < 4.2.14-1.1 | strongswan_4.2.14-1.1_all.deb |
| Debian | 13 | all | strongswan | < 4.2.14-1.1 | strongswan_4.2.14-1.1_all.deb |
Related
ubuntucve
ubuntucve
CVE-2009-1958
2009-06-08 00:00:00
prion
prion
Design/Logic Flaw
2009-06-08 01:00:00
cve
cve
CVE-2009-1958
2009-06-08 01:00:00
cvelist
cvelist
CVE-2009-1958
2009-06-06 18:00:00
nvd
nvd
CVE-2009-1958
2009-06-08 01:00:00
nessus
nessus
SuSE 10 Security Update : strongswan (ZYPP Patch Number 6286)
2009-09-24 00:00:00
SuSE 11 Security Update : strongswan (SAT Patch Number 966)
2009-09-24 00:00:00
openSUSE Security Update : strongswan (strongswan-965)
2009-07-21 00:00:00
openvas
openvas
strongSwan IKE_SA_INIT and IKE_AUTH DoS Vulnerabilities
2009-06-19 00:00:00
SLES11: Security update for strongswan
2009-10-11 00:00:00
SLES11: Security update for strongswan
2009-10-11 00:00:00
securityvulns
securityvulns
[SECURITY] [DSA 1899-1] New strongswan packages fix denial of service
2009-10-03 00:00:00
OpenSwan / StrongSwan multiple security vulnerabilities
2009-10-03 00:00:00
debian
debian
[SECURITY] [DSA 1899-1] New strongswan packages fix denial of service
2009-10-02 18:41:34
osv
osv
strongswan - denial of service
2009-10-02 00:00:00
5 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
0.06 Low
EPSS
Percentile
93.5%
Related for DEBIANCVE:CVE-2009-1958