CVE Reference: CVE-2008-3651

NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE.

Original Page at CVE MITRE:
CVE-2008-3651

Description:
Memory leak in racoon/proposal.c in the racoon daemon in ipsec-tools before 0.7.1 allows remote authenticated users to cause a denial of service (memory consumption) via invalid proposals.

CVE Status:
Candidate

References:

XF
  http://xforce.iss.net/xforce/xfdb/44395

UBUNTU
  http://www.ubuntu.com/usn/usn-641-1

SUSE
  http://lists.opensuse.org/opensuse-security-announce/2009-02/msg00002.html
  http://lists.opensuse.org/opensuse-security-announce/2008-11/msg00001.html

ST
  1020667

SAID
  Secunia Advisory: SA32971
  Secunia Advisory: SA31624
  Secunia Advisory: SA32759
  Secunia Advisory: SA35074
  Secunia Advisory: SA31450

REDHAT
  http://www.redhat.com/support/errata/RHSA-2008-0849.html

OVAL
  http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:10453

MLIST
  http://sourceforge.net/mailarchive/message.php?msg_name=20080724084529.GA3768%40zen.inc
  http://marc.info/?l=ipsec-tools-devel&m=121688914101709&w=2

MANDRIVA
  http://www.mandriva.com/security/advisories?name=MDVSA-2008:181

GENTOO
  http://security.gentoo.org/glsa/glsa-200812-03.xml

CONFIRM
  http://support.apple.com/kb/HT3639
  http://support.apple.com/kb/HT3549
  http://sourceforge.net/project/shownotes.php?release_id=615380&group_id=74601

CERT
  http://www.us-cert.gov/cas/techalerts/TA09-133A.html

BID
  30657

APPLE
  http://lists.apple.com/archives/security-announce/2009/Jun/msg00005.html
  http://lists.apple.com/archives/security-announce/2009/May/msg00002.html


Return to the previous page.