[Secure-testing-team] Bug#495214: CVE-2008-3651: memory leak
steffen.joeris at skolelinux.de
Fri Aug 15 12:56:26 UTC 2008
Justification: user security hole
the following CVE (Common Vulnerabilities & Exposures) id was
published for ipsec-tools.
| Memory leak in racoon/proposal.c in the racoon daemon in ipsec-tools
| before 0.7.1 allows remote authenticated users to cause a denial of
| service (memory consumption) via invalid proposals.
There is an upstream discussion going on here.
If you fix the vulnerability please also make sure to include the
CVE id in your changelog entry.
For further information see:
More information about the Secure-testing-team