Multiple memory leaks in Ipsec-tools before 0.7.2 allow remote attackers to cause a denial of service (memory consumption) via vectors involving (1) signature verification during user authentication with X.509 certificates, related to the eay_check_x509sign function in src/racoon/crypto_openssl.c; and (2) the NAT-Traversal (aka NAT-T) keepalive implementation, related to src/racoon/nattraversal.c.
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Ipsec-tools | Ipsec-tools | * | 0.7.1 (including) |
| Ipsec-tools | Ipsec-tools | 0.1 (including) | 0.1 (including) |
| Ipsec-tools | Ipsec-tools | 0.2 (including) | 0.2 (including) |
| Ipsec-tools | Ipsec-tools | 0.2.1 (including) | 0.2.1 (including) |
| Ipsec-tools | Ipsec-tools | 0.2.2 (including) | 0.2.2 (including) |
| Ipsec-tools | Ipsec-tools | 0.2.3 (including) | 0.2.3 (including) |
| Ipsec-tools | Ipsec-tools | 0.2.4 (including) | 0.2.4 (including) |
| Ipsec-tools | Ipsec-tools | 0.3 (including) | 0.3 (including) |
| Ipsec-tools | Ipsec-tools | 0.3-rc1 (including) | 0.3-rc1 (including) |
| Ipsec-tools | Ipsec-tools | 0.3-rc2 (including) | 0.3-rc2 (including) |
| Ipsec-tools | Ipsec-tools | 0.3-rc3 (including) | 0.3-rc3 (including) |
| Ipsec-tools | Ipsec-tools | 0.3-rc4 (including) | 0.3-rc4 (including) |
| Ipsec-tools | Ipsec-tools | 0.3-rc5 (including) | 0.3-rc5 (including) |
| Ipsec-tools | Ipsec-tools | 0.3.1 (including) | 0.3.1 (including) |
| Ipsec-tools | Ipsec-tools | 0.3.2 (including) | 0.3.2 (including) |
| Ipsec-tools | Ipsec-tools | 0.3.3 (including) | 0.3.3 (including) |
| Ipsec-tools | Ipsec-tools | 0.3_rc1 (including) | 0.3_rc1 (including) |
| Ipsec-tools | Ipsec-tools | 0.3_rc2 (including) | 0.3_rc2 (including) |
| Ipsec-tools | Ipsec-tools | 0.3_rc3 (including) | 0.3_rc3 (including) |
| Ipsec-tools | Ipsec-tools | 0.3_rc4 (including) | 0.3_rc4 (including) |
| Ipsec-tools | Ipsec-tools | 0.3_rc5 (including) | 0.3_rc5 (including) |
| Ipsec-tools | Ipsec-tools | 0.4 (including) | 0.4 (including) |
| Ipsec-tools | Ipsec-tools | 0.4-rc1 (including) | 0.4-rc1 (including) |
| Ipsec-tools | Ipsec-tools | 0.5 (including) | 0.5 (including) |
| Ipsec-tools | Ipsec-tools | 0.5.1 (including) | 0.5.1 (including) |
| Ipsec-tools | Ipsec-tools | 0.5.2 (including) | 0.5.2 (including) |
| Ipsec-tools | Ipsec-tools | 0.6 (including) | 0.6 (including) |
| Ipsec-tools | Ipsec-tools | 0.6.1 (including) | 0.6.1 (including) |
| Ipsec-tools | Ipsec-tools | 0.6.2 (including) | 0.6.2 (including) |
| Ipsec-tools | Ipsec-tools | 0.6.3 (including) | 0.6.3 (including) |
| Ipsec-tools | Ipsec-tools | 0.6.4 (including) | 0.6.4 (including) |
| Ipsec-tools | Ipsec-tools | 0.6.5 (including) | 0.6.5 (including) |
| Ipsec-tools | Ipsec-tools | 0.6.6 (including) | 0.6.6 (including) |
| Ipsec-tools | Ipsec-tools | 0.6.7 (including) | 0.6.7 (including) |
| Ipsec-tools | Ipsec-tools | 0.7 (including) | 0.7 (including) |
| Red Hat Enterprise Linux 5 | RedHat | ipsec-tools-0:0.6.5-13.el5_3.1 | * |
| Ipsec-tools | Ubuntu | dapper | * |
| Ipsec-tools | Ubuntu | devel | * |
| Ipsec-tools | Ubuntu | hardy | * |
| Ipsec-tools | Ubuntu | intrepid | * |
| Ipsec-tools | Ubuntu | jaunty | * |
| Ipsec-tools | Ubuntu | upstream | * |