Test Kennung:	1.3.6.1.4.1.25623.1.0.121455
Kategorie:	Gentoo Local Security Checks
Titel:	Gentoo Security Advisory GLSA 201603-13
Zusammenfassung:	Gentoo Linux Local Security Checks
Beschreibung:	Summary: Gentoo Linux Local Security Checks Vulnerability Insight: The pluto IKE daemon in Libreswan, when built with NSS, allows remote attackers to cause a Denial of Service (assertion failure and daemon restart) via a zero DH g^x value in a KE payload in a IKE packet. Additionally, remote attackers could cause a Denial of Service (daemon restart) via an IKEv1 packet with (1) unassigned bits set in the IPSEC DOI value or (2) the next payload value set to ISAKMP_NEXT_SAK. Solution: Update the affected packages to the latest available version. CVSS Score: 5.0 CVSS Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P
Querverweis:	Common Vulnerability Exposure (CVE) ID: CVE-2015-3204 75392 http://www.securityfocus.com/bid/75392 GLSA-201603-13 https://security.gentoo.org/glsa/201603-13 RHSA-2015:1154 http://rhn.redhat.com/errata/RHSA-2015-1154.html https://libreswan.org/security/CVE-2015-3204/CVE-2015-3204.txt Common Vulnerability Exposure (CVE) ID: CVE-2015-3240 1033418 http://www.securitytracker.com/id/1033418 77536 http://www.securityfocus.com/bid/77536 RHSA-2015:1979 http://rhn.redhat.com/errata/RHSA-2015-1979.html [Openswan Users] 20150827 Openswan 2.6.45 released https://lists.openswan.org/pipermail/users/2015-August/023401.html http://www.oracle.com/technetwork/topics/security/linuxbulletinoct2015-2719645.html https://libreswan.org/security/CVE-2015-3240/CVE-2015-3240.txt
Copyright	Copyright (C) 2016 Eero Volotinen

Dies ist nur einer von 145615 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus. Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.