LISTSERV - SCIENTIFIC-LINUX-ERRATA Archives

SCIENTIFIC-LINUX-ERRATA Archives

February 2014

SCIENTIFIC-LINUX-ERRATA@LISTSERV.FNAL.GOV

	LISTSERV Archives
	SCIENTIFIC-LINUX-ERRATA Home
	SCIENTIFIC-LINUX-ERRATA February 2014

	Log In
	Register

	Subscribe or Unsubscribe

	Search Archives

Options:	Use Monospaced Font Show Text Part by Default Show All Mail Headers
Message:	[<< First] [< Prev] [Next >] [Last >>]
Topic:	[<< First] [< Prev] [Next >] [Last >>]
Author:	[<< First] [< Prev] [Next >] [Last >>]

Subject:	Security ERRATA Moderate: openswan on SL5.x, SL6.x i386/x86_64
From:	Pat Riehecky <[log in to unmask]>
Reply To:	[log in to unmask]
Date:	Tue, 18 Feb 2014 20:01:47 +0000
Content-Type:	text/plain
Parts/Attachments:	text/plain (34 lines)

Synopsis:          Moderate: openswan security update
Advisory ID:       SLSA-2014:0185-1
Issue Date:        2014-02-18
CVE Numbers:       CVE-2013-6466
--

A NULL pointer dereference flaw was discovered in the way Openswan's IKE
daemon processed IKEv2 payloads. A remote attacker could send specially
crafted IKEv2 payloads that, when processed, would lead to a denial of
service (daemon crash), possibly causing existing VPN connections to be
dropped. (CVE-2013-6466)
--

SL5
  x86_64
    openswan-2.6.32-7.3.el5_10.x86_64.rpm
    openswan-debuginfo-2.6.32-7.3.el5_10.x86_64.rpm
    openswan-doc-2.6.32-7.3.el5_10.x86_64.rpm
  i386
    openswan-2.6.32-7.3.el5_10.i386.rpm
    openswan-debuginfo-2.6.32-7.3.el5_10.i386.rpm
    openswan-doc-2.6.32-7.3.el5_10.i386.rpm
SL6
  x86_64
    openswan-2.6.32-27.2.el6_5.x86_64.rpm
    openswan-debuginfo-2.6.32-27.2.el6_5.x86_64.rpm
    openswan-doc-2.6.32-27.2.el6_5.x86_64.rpm
  i386
    openswan-2.6.32-27.2.el6_5.i686.rpm
    openswan-debuginfo-2.6.32-27.2.el6_5.i686.rpm
    openswan-doc-2.6.32-27.2.el6_5.i686.rpm

- Scientific Linux Development Team

ATOM RSS1 RSS2

LISTSERV.FNAL.GOV