Le 26 déc. 2011 à 13:33, Moritz Muehlenhoff a écrit :

> -----BEGIN PGP SIGNED MESSAGE-----
> Hash: SHA1
> 
> - -------------------------------------------------------------------------
> Debian Security Advisory DSA-2374-1                   [email protected]
> http://www.debian.org/security/                        Moritz Muehlenhoff
> December 26, 2011                      http://www.debian.org/security/faq
> - -------------------------------------------------------------------------
> 
> Package        : openswan
> Vulnerability  : implementation error
> Problem type   : remote
> Debian-specific: no
> CVE ID         : CVE-2011-4073 
> Debian Bug     : 650674
> 
> The information security group at ETH Zurich discovered a denial of 
> service vulnerability in the crypto helper handler of the IKE daemon
> pluto. More information can be found in the upstream advisory at
> http://openswan.org/download/CVE-2011-4073/CVE-2011-4073.txt  
> 
> For the oldstable distribution (lenny), this problem has been fixed in
> version 1:2.4.12+dfsg-1.3+lenny4.
> 
> For the stable distribution (squeeze), this problem has been fixed in
> version 1:2.6.28+dfsg-5+squeeze1.
> 
> For the unstable distribution (sid), this problem has been fixed in
> version 1:2.6.37-1.
> 
> We recommend that you upgrade your openswan packages.
> 
> Further information about Debian Security Advisories, how to apply
> these updates to your system and frequently asked questions can be
> found at: http://www.debian.org/security/
> 
> Mailing list: [email protected]
> -----BEGIN PGP SIGNATURE-----
> Version: GnuPG v1.4.11 (GNU/Linux)
> 
> iEYEARECAAYFAk74aSoACgkQXm3vHE4uyloTDQCgobh8B9WHUz0ayT4KJvi9C00J
> 1wYAoOdI8X4m6qEWn1cY2JKT/NERWBeJ
> =1tWK
> -----END PGP SIGNATURE-----
> 
> 
> -- 
> To UNSUBSCRIBE, email to [email protected]
> with a subject of "unsubscribe". Trouble? Contact [email protected]
> Archive: http://lists.debian.org/[email protected]
> 


--
To UNSUBSCRIBE, email to [email protected]
with a subject of "unsubscribe". Trouble? Contact [email protected]
Archive: http://lists.debian.org/[email protected]

Reply via email to