--- Comment #4 from commit-h...@freebsd.org ---
A commit references this bug:
Date: Sun Apr 15 08:51:12 UTC 2018
New revision: 467375
security/ipsec-tools: fix CVE-2016-10396
The racoon daemon in IPsec-Tools 0.8.2 contains a remotely exploitable
computational-complexity attack when parsing and storing ISAKMP fragments.
The implementation permits a remote attacker to exhaust computational
resources on the remote endpoint by repeatedly sending ISAKMP fragment
packets in a particular order such that the worst-case computational
complexity is realized in the algorithm utilized to determine
if reassembly of the fragments can take place.
The fix obtained from NetBSD CVS head with a command:
cvs diff -D 2017-01-24 -D 2017-09-01 \
While here, add LICENSE.
Approved by: ports-secteam (riggs)
Obtained from: NetBSD
You are receiving this mail because:
You are on the CC list for the bug.
firstname.lastname@example.org mailing list
To unsubscribe, send any mail to "freebsd-net-unsubscr...@freebsd.org"