CVE-2008-3651: Infoleak
First published: Thu Jul 24 2008(Updated: )
Memory leak in racoon/proposal.c in the racoon daemon in ipsec-tools before 0.7.1 allows remote authenticated users to cause a denial of service (memory consumption) via invalid proposals.
Credit: secalert@redhat.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Linux Ipsec Tools Racoon Daemon | =0.2.5 | |
| Linux Ipsec Tools Racoon Daemon | =0.6 | |
| Linux Ipsec Tools Racoon Daemon | =0.7 | |
| Linux Ipsec Tools Racoon Daemon | =0.2.2 | |
| Linux Ipsec Tools Racoon Daemon | =0.6.4 | |
| Linux Ipsec Tools Racoon Daemon | =0.6.7 | |
| Linux Ipsec Tools Racoon Daemon | =0.3.3 | |
| Linux Ipsec Tools Racoon Daemon | =0.6.6 | |
| Linux Ipsec Tools Racoon Daemon | =0.5.2 | |
| Linux Ipsec Tools Racoon Daemon | =0.5.1 | |
| Linux Ipsec Tools Racoon Daemon | =0.6.5 | |
| Linux Ipsec Tools Racoon Daemon | =0.5 | |
| redhat/ipsec-tools | <0:0.2.5-0.7.rhel3.5 | 0:0.2.5-0.7.rhel3.5 |
| redhat/ipsec-tools | <0:0.3.3-7.el4_7 | 0:0.3.3-7.el4_7 |
| redhat/ipsec-tools | <0:0.6.5-9.el5_2.3 | 0:0.6.5-9.el5_2.3 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- http://marc.info/?l=ipsec-tools-devel&m=121688914101709&w=2
- https://bugzilla.redhat.com/show_bug.cgi?id=456660
- http://sourceforge.net/project/shownotes.php?release_id=615380&group_id=74601
- http://www.mandriva.com/security/advisories?name=MDVSA-2008:181
- http://secunia.com/advisories/31450
- http://sourceforge.net/mailarchive/message.php?msg_name=20080724084529.GA3768%40zen.inc
- http://www.securitytracker.com/id?1020667
- http://www.securityfocus.com/bid/30657
- http://www.redhat.com/support/errata/RHSA-2008-0849.html
- http://secunia.com/advisories/31624
- http://www.ubuntu.com/usn/usn-641-1
- http://secunia.com/advisories/32759
- http://lists.opensuse.org/opensuse-security-announce/2008-11/msg00001.html
- http://security.gentoo.org/glsa/glsa-200812-03.xml
- http://secunia.com/advisories/32971
- http://lists.opensuse.org/opensuse-security-announce/2009-02/msg00002.html
- http://support.apple.com/kb/HT3549
- http://secunia.com/advisories/35074
- http://lists.apple.com/archives/security-announce/2009/May/msg00002.html
- http://www.vupen.com/english/advisories/2009/1297
- http://www.us-cert.gov/cas/techalerts/TA09-133A.html
- http://support.apple.com/kb/HT3639
- http://www.vupen.com/english/advisories/2009/1621
- http://lists.apple.com/archives/security-announce/2009/Jun/msg00005.html
- http://www.vupen.com/english/advisories/2008/2844
- http://www.vupen.com/english/advisories/2008/2345
- https://exchange.xforce.ibmcloud.com/vulnerabilities/44395
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10453
- http://bugs.gentoo.org/show_bug.cgi?id=232831
- http://cvsweb.netbsd.org/bsdweb.cgi/src/crypto/dist/ipsec-tools/src/racoon/proposal.c.diff?r1=1.15&r2=1.16&f=h
- http://cvsweb.netbsd.org/bsdweb.cgi/src/crypto/dist/ipsec-tools/ChangeLog.diff?r1=1.169&r2=1.170&f=h
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=456660#c2
- https://bugzilla.redhat.com/show_bug.cgi/attachment.cgi?id=314117&action=diff
- https://bugzilla.redhat.com/show_bug.cgi/attachment.cgi?id=314117&action=edit
- https://access.redhat.com/security/cve/CVE-2008-3651
- http://admin.fedoraproject.org/updates/ipsec-tools-0.7.1-5.fc8
- http://admin.fedoraproject.org/updates/ipsec-tools-0.7.1-5.fc9
- http://rhn.redhat.com/errata/RHSA-2008-0849.html
- https://admin.fedoraproject.org/updates/F8/FEDORA-2008-9016
- https://admin.fedoraproject.org/updates/F9/FEDORA-2008-9007
- https://www.cve.org/CVERecord?id=CVE-2008-3651 https://nvd.nist.gov/vuln/detail/CVE-2008-3651
- https://access.redhat.com/errata/RHSA-2008:0849
- https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2008-3651.json
- collector/nvd-historical
- collector/nvd-index
- agent/type
- agent/first-publish-date
- collector/redhat-bugzilla
- source/Red Hat
- alias/CVE-2008-3651
- agent/softwarecombine
- agent/severity
- agent/references
- agent/author
- agent/weakness
- agent/description
- collector/redhat-cve
- agent/software-canonical-lookup
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/tags
- agent/event
- agent/trending
- vendor/linux
- canonical/linux ipsec tools racoon daemon
- version/linux ipsec tools racoon daemon/0.2.5
- version/linux ipsec tools racoon daemon/0.6
- version/linux ipsec tools racoon daemon/0.7
- version/linux ipsec tools racoon daemon/0.2.2
- version/linux ipsec tools racoon daemon/0.6.4
- version/linux ipsec tools racoon daemon/0.6.7
- version/linux ipsec tools racoon daemon/0.3.3
- version/linux ipsec tools racoon daemon/0.6.6
- version/linux ipsec tools racoon daemon/0.5.2
- version/linux ipsec tools racoon daemon/0.5.1
- version/linux ipsec tools racoon daemon/0.6.5
- version/linux ipsec tools racoon daemon/0.5
- package-manager/redhat