Debian Local Security Checks : Debian Security Advisory DSA 1759-1 (strongswan)

Resumen de Precio/Funciones | Ordenar | Nuevas Vulnerabilidades | Confidencialidad | Búsqueda de Vulnerabilidad

Búsqueda de Vulnerabilidad		Buscar 94899 Descripciones CVE y 51984 Descripciones de Pruebas, accesos 10,000+ referencias cruzadas.
	Pruebas CVE Todos

ID de Prueba: 1.3.6.1.4.1.25623.1.0.63731

Categoría: Debian Local Security Checks

Título: Debian Security Advisory DSA 1759-1 (strongswan)

Resumen: Debian Security Advisory DSA 1759-1 (strongswan)

Descripción: Description:
The remote host is missing an update to strongswan
announced via advisory DSA 1759-1.

Gerd v. Egidy discovered that the Pluto IKE daemon in strongswan, an
IPSec implementation for linux, is prone to a denial of service attack
via a malicious packet.

For the stable distribution (lenny), this problem has been fixed in
version 4.2.4-5+lenny1.

For the oldstable distribution (etch), this problem has been fixed in
version 2.8.0+dfsg-1+etch1.

For the testing distribution (squeeze) and the unstable distribution
(sid), this problem will be fixed soon.

We recommend that you upgrade your strongswan packages.

Solution:
https://secure1.securityspace.com/smysecure/catid.html?in=DSA%201759-1

CVSS Score:
5.0

CVSS Vector:
AV:N/AC:L/Au:N/C:N/I:N/A:P

Referencia Cruzada: Common Vulnerability Exposure (CVE) ID: CVE-2009-0790
Bugtraq: 20090330 CVE-2009-0790: ISAKMP DPD Remote Vulnerability with Openswan & Strongswan IPsec (Google Search)
http://www.securityfocus.com/archive/1/archive/1/502270/100/0/threaded
Debian Security Information: DSA-1759 (Google Search)
http://www.debian.org/security/2009/dsa-1759
Debian Security Information: DSA-1760 (Google Search)
http://www.debian.org/security/2009/dsa-1760
http://www.redhat.com/support/errata/RHSA-2009-0402.html
SuSE Security Announcement: SUSE-SR:2009:009 (Google Search)
http://lists.opensuse.org/opensuse-security-announce/2009-04/msg00010.html
BugTraq ID: 34296
http://www.securityfocus.com/bid/34296
http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:11171
http://www.securitytracker.com/id?1021949
http://www.securitytracker.com/id?1021950
http://secunia.com/advisories/34472
http://secunia.com/advisories/34483
http://secunia.com/advisories/34494
http://secunia.com/advisories/34546
http://www.vupen.com/english/advisories/2009/0886
XForce ISS Database: openswan-strongswan-dpd-dos(49523)
http://xforce.iss.net/xforce/xfdb/49523

Copyright Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com

Esta es sólo una de 51984 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa.
Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.

Registro de Nuevo Usuario
Email:

Usuario:

Contraseña:

Envíeme por email sus boletines mensuales, informándome los últimos servicios, mejoras y encuestas.

Por favor envíeme por email un anuncio de prueba de vulnerabilidades siempre que se agregue una nueva prueba.

Privacidad

Ingreso de Usuario Registrado

Usuario:

Contraseña:

¿Olvidó su usuario o contraseña??

Email/ID de Usario:

ID de Prueba:	1.3.6.1.4.1.25623.1.0.63731
Categoría:	Debian Local Security Checks
Título:	Debian Security Advisory DSA 1759-1 (strongswan)
Resumen:	Debian Security Advisory DSA 1759-1 (strongswan)
Descripción:	Description: The remote host is missing an update to strongswan announced via advisory DSA 1759-1. Gerd v. Egidy discovered that the Pluto IKE daemon in strongswan, an IPSec implementation for linux, is prone to a denial of service attack via a malicious packet. For the stable distribution (lenny), this problem has been fixed in version 4.2.4-5+lenny1. For the oldstable distribution (etch), this problem has been fixed in version 2.8.0+dfsg-1+etch1. For the testing distribution (squeeze) and the unstable distribution (sid), this problem will be fixed soon. We recommend that you upgrade your strongswan packages. Solution: https://secure1.securityspace.com/smysecure/catid.html?in=DSA%201759-1 CVSS Score: 5.0 CVSS Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2009-0790 Bugtraq: 20090330 CVE-2009-0790: ISAKMP DPD Remote Vulnerability with Openswan & Strongswan IPsec (Google Search) http://www.securityfocus.com/archive/1/archive/1/502270/100/0/threaded Debian Security Information: DSA-1759 (Google Search) http://www.debian.org/security/2009/dsa-1759 Debian Security Information: DSA-1760 (Google Search) http://www.debian.org/security/2009/dsa-1760 http://www.redhat.com/support/errata/RHSA-2009-0402.html SuSE Security Announcement: SUSE-SR:2009:009 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2009-04/msg00010.html BugTraq ID: 34296 http://www.securityfocus.com/bid/34296 http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:11171 http://www.securitytracker.com/id?1021949 http://www.securitytracker.com/id?1021950 http://secunia.com/advisories/34472 http://secunia.com/advisories/34483 http://secunia.com/advisories/34494 http://secunia.com/advisories/34546 http://www.vupen.com/english/advisories/2009/0886 XForce ISS Database: openswan-strongswan-dpd-dos(49523) http://xforce.iss.net/xforce/xfdb/49523
Copyright	Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com