Date: Sat, 14 Apr 2018 12:04:55 +0000 (UTC) From: Eugene Grosbein <eugen@FreeBSD.org> To: ports-committers@freebsd.org, svn-ports-all@freebsd.org, svn-ports-head@freebsd.org Subject: svn commit: r467311 - head/security/vuxml Message-ID: <201804141204.w3EC4tWx023234@repo.freebsd.org>
next in thread | raw e-mail | index | archive | help
Author: eugen Date: Sat Apr 14 12:04:55 2018 New Revision: 467311 URL: https://svnweb.freebsd.org/changeset/ports/467311 Log: ipsec-tools: document remotely exploitable computational-complexity attack. PR: 225066 Security: CVE-2016-10396 Modified: head/security/vuxml/vuln.xml Modified: head/security/vuxml/vuln.xml ============================================================================== --- head/security/vuxml/vuln.xml Sat Apr 14 12:01:21 2018 (r467310) +++ head/security/vuxml/vuln.xml Sat Apr 14 12:04:55 2018 (r467311) @@ -58,6 +58,37 @@ Notes: * Do not forget port variants (linux-f10-libxml2, libxml2, etc.) --> <vuxml xmlns="http://www.vuxml.org/apps/vuxml-1">; + <vuln vid="974a6d32-3fda-11e8-aea4-001b216d295b"> + <topic>ipsec-tools -- remotely exploitable computational-complexity attack</topic> + <affects> + <package> + <name>ipsec-tools</name> + <range><lt>0.8.2_3</lt></range> + </package> + </affects> + <description> + <body xmlns="http://www.w3.org/1999/xhtml">; + <p>Robert Foggia via NetBSD GNATS reports:</p> + <blockquote cite="https://gnats.netbsd.org/cgi-bin/query-pr-single.pl?number=51682">; + <p>The ipsec-tools racoon daemon contains a remotely exploitable computational + complexity attack when parsing and storing isakmp fragments. The implementation + permits a remote attacker to exhaust computational resources on the remote endpoint + by repeatedly sending isakmp fragment packets in a particular order such that + the worst-case computational complexity is realized in the algorithm utilized + to determine if reassembly of the fragments can take place.</p> + </blockquote> + </body> + </description> + <references> + <url>https://gnats.netbsd.org/cgi-bin/query-pr-single.pl?number=51682</url>; + <cvename>CVE-2016-10396</cvename> + </references> + <dates> + <discovery>2016-12-02</discovery> + <entry>2018-04-14</entry> + </dates> + </vuln> + <vuln vid="1fccb25e-8451-438c-a2b9-6a021e4d7a31"> <topic>nghttp2 -- Denial of service due to NULL pointer dereference</topic> <affects>
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?201804141204.w3EC4tWx023234>