|Category:||Debian Local Security Checks|
|Title:||Debian Security Advisory DSA 1759-1 (strongswan)|
|Summary:||Debian Security Advisory DSA 1759-1 (strongswan)|
The remote host is missing an update to strongswan
announced via advisory DSA 1759-1.
Gerd v. Egidy discovered that the Pluto IKE daemon in strongswan, an
IPSec implementation for linux, is prone to a denial of service attack
via a malicious packet.
For the stable distribution (lenny), this problem has been fixed in
For the oldstable distribution (etch), this problem has been fixed in
For the testing distribution (squeeze) and the unstable distribution
(sid), this problem will be fixed soon.
We recommend that you upgrade your strongswan packages.
Common Vulnerability Exposure (CVE) ID: CVE-2009-0790|
Bugtraq: 20090330 CVE-2009-0790: ISAKMP DPD Remote Vulnerability with Openswan & Strongswan IPsec (Google Search)
Debian Security Information: DSA-1759 (Google Search)
Debian Security Information: DSA-1760 (Google Search)
SuSE Security Announcement: SUSE-SR:2009:009 (Google Search)
BugTraq ID: 34296
XForce ISS Database: openswan-strongswan-dpd-dos(49523)
|Copyright||Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com|
|This is only one of 58962 vulnerability tests in our test suite. Find out more about running a complete security audit.|
To run a free test of this vulnerability against your system, register below.